CVE-2025-68525

Name of the Vulnerable Software and Affected Versions pixelgrade Category Icon versions through 1.0.2

Description The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting (XSS). This means that malicious scripts can be stored and executed within the application, potentially affecting users who interact with the compromised content. The affected component is the Category Icon feature.

Recommendations Update to a version later than 1.0.2.