cleantalk
Vulnerabilities and Security Researches

Custom CSS, CVE-2025-48096

CVE, Research URL

CVE-2025-48096

Home page URL

Security reports for Custom CSS

Application

Custom CSS

Published on
Oct 22, 2025
Research Description
Missing Authorization vulnerability in FRESHFACE Custom CSS custom-css-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Custom CSS: from n/a through <= 1.4.0.
Affected versions
max 1.4.0.
Status
vulnerable
Previous vulnerability researches
OS Our Team (CVE-2024-52341) , Nov 12, 2024
New vulnerability
Off-Canvas Sidebars &amp; Menus (Slidebars) (CVE-2025-62891) , Nov 11, 2025
LLM Hubspot Blog Import (CVE-2025-11257) , Nov 11, 2025
AI ChatBot (CVE-2025-62952) , Nov 11, 2025
Pie Calendar (CVE-2025-62024) , Nov 11, 2025
Demo Import Kit (CVE-2025-10051) , Nov 11, 2025