PT-2025-39596 · Unknown · Jennifer Moss Mww Disclaimer Buttons
Nabil Irawan
·
Published
2025-09-26
·
Updated
2025-09-26
·
CVE-2025-60154
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Jennifer Moss MWW Disclaimer Buttons versions through 3.41
Description
The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting (XSS). This means that malicious code can be injected into the web page and executed by other users. The issue affects the Disclaimer Buttons component.
Recommendations
Update Jennifer Moss MWW Disclaimer Buttons to a version later than 3.41.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jennifer Moss Mww Disclaimer Buttons