2 matches found
CVE-2025-22801
CVE-2025-22801 is a Stored XSS vulnerability in HasThemes Free WooCommerce Theme 99fy Extension, affecting Free WooCommerce Theme 99fy Extension versions from unknown/n-a up to 1.2.8. Root cause is improper input neutralization during web page generation. Public details in Red Hat and Wordfence r...
PT-2025-4710 · Hasthemes · The Free Woocommerce Theme 99Fy Extension
Name of the Vulnerable Software and Affected Versions: HasThemes Free WooCommerce Theme 99fy Extension versions 1.2.8 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows stored XSS. This...