Cross-site Scripting Vulnerability in iframe to Embed Plugin by sw-galati.ro
CVE-2025-22545
6.5MEDIUM
What is CVE-2025-22545?
The iframe to Embed Plugin by sw-galati.ro is vulnerable to Cross-site Scripting (XSS) due to improper neutralization of input during web page generation. This flaw allows attackers to embed malicious scripts in web pages, potentially causing harmful actions and compromising user data. This issue affects versions from n/a up to 1.2, making it essential for website administrators to take immediate steps to mitigate the risk by updating the plugin or applying recommended security patches.
Affected Version(s)
iframe to embed <= 1.2