CVE-2025-22315
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Jan 7, 2025
CWE ID 79
Summary
CVE-2025-22315 is a Cross-site Scripting (XSS) vulnerability affecting WPDeveloper Typing Text, version 1.2.7 and below. The flaw lies in the improper neutralization of user input during web page generation. An attacker can exploit this vulnerability to inject malicious scripts into a targeted website, potentially stealing user data or taking control of their web sessions. The impacted component, Typing Text, is responsible for generating dynamic content on web pages. Users are advised to update to the latest version of Typing Text to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share