Cross-site Scripting Vulnerability in Instant Locations by Tan Nguyen
CVE-2025-58886
5.9MEDIUM
What is CVE-2025-58886?
The vulnerability discovered in Instant Locations by Tan Nguyen involves improper neutralization of user input during web page generation, leading to Stored XSS. This security flaw allows attackers to inject malicious scripts into content viewed by other users, potentially compromising user data and session integrity. Impacted versions include all from n/a to 1.0. It is crucial for users to update their plugins and implement best security practices to mitigate the risk.
Affected Version(s)
Instant Locations <= 1.0