CVE-2025-53466

Name of the Vulnerable Software and Affected Versions CodeSolz Better Find and Replace versions through 1.7.6

Description The software contains a flaw related to improper input handling during web page generation, which can lead to Stored Cross-site Scripting (XSS). This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerability affects the application's handling of user-supplied data, potentially enabling unauthorized code execution within the context of a user's browser. The affected functionality involves web page generation, where input is not adequately sanitized or encoded before being included in the output. This can allow an attacker to inject arbitrary HTML or JavaScript code into the page, which will then be executed by the user's browser.

Recommendations Update CodeSolz Better Find and Replace to a version later than 1.7.6.