Stored XSS Vulnerability in Widgetize Pages Light by OTWthemes
CVE-2025-58805
5.9MEDIUM
What is CVE-2025-58805?
The Widgetize Pages Light by OTWthemes suffers from a stored cross-site scripting (XSS) vulnerability, which occurs due to improper neutralization of input during web page generation. Attackers can exploit this flaw to inject malicious scripts into web pages, potentially compromising user session data and facilitating unauthorized actions on behalf of the users. Affected versions span from n/a up to 3.0, making it critical for users to update to the latest secure version to mitigate risks associated with this vulnerability.
Affected Version(s)
Widgetize Pages Light <= 3.0