CVE-2025-63045

Name of the Vulnerable Software and Affected Versions Master Slider Pro versions prior to 3.7.13

Description Improper neutralization of input during web page generation in the masterslider component allows for DOM-Based Cross-site Scripting (XSS), a flaw where an application contains client-side JavaScript that processes data from an untrusted source in an unsafe way, typically updating the Document Object Model (DOM).

Recommendations Update to a version newer than 3.7.12.