CVE-2025-46538

CVE-2025-46538 – WordPress Inline Text Popup (webplanetsoft) is a DOM-based cross-site scripting vulnerability affecting Inline Text Popup versions up to 1.0.0. The issue arises from improper input neutralization during web page generation, enabling XSS. Public details in the initial document ide...

PT-2025-17838 · Webplanetsoft · Webplanetsoft Inline Text Popup

Name of the Vulnerable Software and Affected Versions: webplanetsoft Inline Text Popup versions 1.0.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an...