CVE-2025-62119

Name of the Vulnerable Software and Affected Versions ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link versions through 2.0.0

Description The software contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting (XSS) condition. This specific instance is a DOM-Based XSS, potentially allowing attackers to inject malicious scripts into web pages viewed by other users.

Recommendations Versions prior to 2.0.0 should be updated.