CVE-2025-28971

Name of the Vulnerable Software and Affected Versions: CWD Web Designer Easy Elements Hider versions 2.0 and earlier

Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting (XSS). This means that an attacker can inject malicious scripts into the website, potentially affecting users who access the compromised page.

Recommendations: For CWD Web Designer Easy Elements Hider versions 2.0 and earlier, update to a version that fixes the Stored XSS issue, if available. As a temporary workaround, consider restricting user input to prevent malicious script injection until a patch is available.