CVE-2025-62124

Name of the Vulnerable Software and Affected Versions Soli WP Post Signature versions through 0.4.1

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, which can lead to Stored Cross-site Scripting (XSS). This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerability exists because the application does not properly sanitize user input before including it in the generated web page. This could allow an attacker to execute arbitrary JavaScript code in the context of a victim's browser.

Recommendations Update Soli WP Post Signature to a version later than 0.4.1.