CVE-2025-57945

Name of the Vulnerable Software and Affected Versions cedcommerce WP Advanced PDF versions through 1.1.7

Description The software contains a flaw due to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting (XSS). This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerability affects the generation of web pages.

Recommendations Update to a version later than 1.1.7.