PT-2025-29803 · Arisoft · Arisoft Contact Form 7 Editor Button

Nguyen Xuan Chien

Published

2025-07-16

Updated

2025-07-16

CVE-2025-48345

CVSS v3.1

7.1

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions:

arisoft Contact Form 7 Editor Button versions through 1.0.0

Description:

The software contains a Reflected Cross-site Scripting (XSS) issue due to improper neutralization of input during web page generation. This allows for potential malicious code execution within the context of a user's browser.

Recommendations:

Update arisoft Contact Form 7 Editor Button to a version later than 1.0.0.

Fix

XSS

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-48345

Affected Products

Arisoft Contact Form 7 Editor Button

PT-2025-29803 · Arisoft · Arisoft Contact Form 7 Editor Button

Weakness Enumeration

Related Identifiers

Affected Products

References · 3