CVE-2025-49411

Name of the Vulnerable Software and Affected Versions: iFrame Block versions n/a through 0.1.1

Description: This issue involves improper neutralization of input during web page generation, leading to a Stored Cross-site Scripting (XSS) condition in Vikas Sharma iFrame Block. Successful exploitation of this issue could allow an attacker to inject malicious scripts into web pages viewed by other users.

Recommendations: Update iFrame Block to a version later than 0.1.1.