CVE-2025-50048

Name of the Vulnerable Software and Affected Versions: Atakan Au Automatically Hierarchic Categories in Menu versions 2.0.9 and earlier

Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS), which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially affecting users who access the compromised page.

Recommendations: For versions 2.0.9 and earlier, update to a version that fixes the Stored XSS issue. As a temporary workaround, consider restricting user input to prevent malicious scripts from being injected into the website. Avoid using the vulnerable version of Automatically Hierarchic Categories in Menu until a patch is available.