CVE-2025-46483

Name of the Vulnerable Software and Affected Versions Peadig’s Google +1 Button versions 0.1.2 and earlier

Description The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This can be exploited through the Peadig’s Google +1 Button, enabling attackers to inject malicious scripts into the DOM.

Recommendations For Peadig’s Google +1 Button versions 0.1.2 and earlier, update to a version that fixes the improper neutralization of input during web page generation to prevent DOM-Based XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.