CVE-2025-66103

Name of the Vulnerable Software and Affected Versions Revmakx WPCal.Io versions through 0.9.5.9

Description The software contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-Site Scripting (XSS) condition. This allows for the potential execution of malicious scripts within the context of a user's browser. The issue affects the application's handling of user-supplied data when constructing web pages. The vulnerability could be exploited through crafted input that is not properly sanitized before being included in the generated HTML. This could allow an attacker to inject malicious code, potentially leading to the compromise of user accounts or sensitive information.

Recommendations Update Revmakx WPCal.Io to a version later than 0.9.5.9.