CVE-2025-23830

Name of the Vulnerable Software and Affected Versions Jobair JB Horizontal Scroller News Ticker versions 1.0 and earlier

Description The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject malicious scripts into the website, affecting users' sessions.

Recommendations For Jobair JB Horizontal Scroller News Ticker versions 1.0 and earlier, consider disabling the plugin until a patch is available to prevent potential exploitation. Restrict access to sensitive areas of the website that utilize the JB Horizontal Scroller News Ticker to minimize the risk of XSS attacks.