XSS Vulnerability in Vizly Web Design Real Estate Packages by Vizly
CVE-2025-9969

7.1HIGH

Key Information:

Vendor

Vizly Web Design

Status
Real Estate Packages
Vendor
CVE Published:
19 September 2025

What is CVE-2025-9969?

The Vizly Web Design Real Estate Packages contains a vulnerability that allows improper input neutralization during web page generation, leading to Cross-site Scripting (XSS). This flaw can enable attackers to spoof content and potentially hijack user sessions. Specifically, this vulnerability affects versions prior to 5.1, posing a risk to users who depend on these packages for real estate website functionalities. It is crucial for users to update to the latest version to mitigate security threats.

Affected Version(s)

Real Estate Packages 0 < 5.1

References

https://www.usom.gov.tr/bildirim/tr-25-0278

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Akıner KISA
.
CVE-2025-9969 : XSS Vulnerability in Vizly Web Design Real Estate Packages by Vizly