CVE-2025-25095

Name of the Vulnerable Software and Affected Versions ReverbNation Widgets versions n/a through 2.1

Description The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting (XSS) vulnerability, specifically Stored XSS. This allows for malicious scripts to be stored on the server and executed when a user accesses the affected web page.

Recommendations For ReverbNation Widgets versions n/a through 2.1, update to a version that fixes the improper neutralization of input during web page generation to prevent Stored XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.