CVE-2025-32198

Name of the Vulnerable Software and Affected Versions: Brizy versions n/a through 2.6.14

Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for the injection of malicious scripts into web pages. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For Brizy versions n/a through 2.6.14, update to a version later than 2.6.14 to resolve the issue. At the moment, there is no information about additional mitigation measures.