CVE-2025-58684

Name of the Vulnerable Software and Affected Versions Themepoints Logo Showcase versions through 3.0.9

Description The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting (XSS). This means that malicious code can be injected into the application and executed by other users. The vulnerability exists due to insufficient sanitization of user-supplied data when generating web pages. The affected component is Logo Showcase.

Recommendations Update to a version later than 3.0.9.