CVE-2025-62991

Name of the Vulnerable Software and Affected Versions ThinkUpThemes Minamaze versions through 1.10.1

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Stored Cross-site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerability affects the Minamaze theme.

Recommendations Update ThinkUpThemes Minamaze to a version later than 1.10.1.