Business Contact Widget, CVE-2025-46529

CVE, Research URL: CVE-2025-46529
Home page URL: Security reports for Business Contact Widget
Application: Business Contact Widget
Published on: Apr 24, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StressFree Sites Business Contact Widget business-contact-widget allows Stored XSS.This issue affects Business Contact Widget: from n/a through <= 2.7.0.
Affected versions: max 2.7.0.
Status: vulnerable