Cross-Site Scripting Vulnerability in Easy Flash Embed by Vincent Boiardt
CVE-2025-48105
6.5MEDIUM
What is CVE-2025-48105?
A Cross-Site Scripting (XSS) vulnerability exists in the Easy Flash Embed plugin by Vincent Boiardt, allowing attackers to inject malicious scripts. This flaw facilitates stored XSS attacks, posing significant risks to users interacting with affected web pages. Proper validation and sanitization of user inputs are crucial to mitigate this security issue. Ensure your installation of Easy Flash Embed is updated to protect against potential exploits.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Easy Flash Embed <= 1.0
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Muhammad Yudha - DJ (Patchstack Alliance)