CVE-2025-52751

Name of the Vulnerable Software and Affected Versions colome Slide Puzzle versions through 1.0.0

Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-site Scripting (XSS) issue. This allows for the injection of malicious scripts through a web page. The affected component is the slide-puzzle functionality. The vulnerability involves the lack of proper sanitization of input data, potentially enabling an attacker to execute arbitrary code within the context of a user's browser.

Recommendations Versions prior to or equal to 1.0.0 should be updated. At the moment, there is no information about a newer version that contains a fix for this vulnerability.