CVE-2025-27305

Name of the Vulnerable Software and Affected Versions Achal Jain Table of Contents Block versions 1.0.2 and earlier

Description The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting (XSS) vulnerability. Specifically, it is a Stored XSS vulnerability.

Recommendations For versions 1.0.2 and earlier, update to a version that contains a fix for this issue. If no specific fix is provided for version 1.0.2, consider disabling the Table of Contents Block until a patch is available to prevent potential exploitation.