Cross-site Scripting Vulnerability in WordWeb Software Crossword Compiler Puzzles
CVE-2025-46493
6.5MEDIUM
What is CVE-2025-46493?
The Crossword Compiler Puzzles from WordWeb Software is susceptible to a Cross-site Scripting (XSS) vulnerability due to improper neutralization of user input during web page generation. This vulnerability allows for stored XSS attacks, enabling an attacker to inject malicious scripts that can be executed in the context of an unsuspecting user's browser. Users of Crossword Compiler Puzzles versions 5.3 and earlier are advised to apply appropriate security measures to mitigate potential exploits that could compromise user data and system integrity.
Affected Version(s)
Crossword Compiler Puzzles <= 5.3