Cross-Site Scripting Vulnerability in Rencontre by Jacques Malgrange

CVE-2025-67558

What is CVE-2025-67558?

The Rencontre plugin by Jacques Malgrange contains a vulnerability that allows for stored Cross-Site Scripting (XSS) attacks. This issue arises due to insufficient input validation during web page generation, permitting attackers to inject malicious scripts into web pages viewed by users. Affected versions include all releases up to and including 3.13.7. It's crucial for website administrators using this plugin to assess their installations and apply necessary updates to mitigate security risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References