CVE-2025-15454

Name of the Vulnerable Software and Affected Versions zhanglun lettura versions up to 0.1.22

Description A security issue exists in zhanglun lettura affecting the RSS Handler component and specifically the processing within the src/components/ArticleView/ContentRender.tsx file. This issue results in cross site scripting, allowing for remote execution of attacks. The complexity of the attack is considered high, and exploitability is assessed as difficult. The exploit is publicly available.

Recommendations Apply patch 67213093db9923e828a6e3fd8696a998c85da2d4.