CVE-2026-25453

Name of the Vulnerable Software and Affected Versions Advanced iFrame versions through 2025.10

Description The software contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting (XSS) condition. Specifically, the issue manifests as DOM-Based XSS. The vulnerability exists in the advanced-iframe component.

Recommendations Update Advanced iFrame to a version later than 2025.10.