CVE-2025-8506

Name of the Vulnerable Software and Affected Versions wx-shop up to de1b66331368695779cfc6e4d11a64caddf8716e

Description A vulnerability exists in wx-shop related to the processing of the file /user/editUI. This issue allows for cross-site scripting (XSS) attacks, which can be initiated remotely. The exploit for this issue has been publicly disclosed. The software utilizes a rolling release model, and specific version details for affected and updated releases are unavailable.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.