Cross-Site Scripting Vulnerability in Greenshift by WPSoul
CVE-2025-49301
6.5MEDIUM
What is CVE-2025-49301?
A Cross-Site Scripting (XSS) vulnerability exists in the Greenshift plugin by WPSoul that can allow an attacker to inject malicious scripts into the web pages viewed by users. This issue is particularly significant as it involves improper neutralization of user inputs during page generation. As a result, affected versions, including those from n/a through 11.5.5, may expose users to various security risks, including data theft and session hijacking.
Affected Version(s)
Greenshift <= 11.5.5