Medium severity6.5NVD Advisory· Published Feb 20, 2025· Updated Jun 17, 2026
CVE-2025-25973
CVE-2025-25973
Description
A stored Cross Site Scripting vulnerability in the "related recommendations" feature in Ppress v.0.0.9 allows a remote attacker to execute arbitrary code via a crafted script to the article.title, article.category, and article.tags parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- gist.github.com/coleak2021/512acaa12ba0987499d560967acff1d1nvdMitigationPatchThird Party Advisory
- github.com/yandaozi/PPress/issues/3nvdExploitIssue Tracking
News mentions
0No linked articles in our index yet.