VYPR

AccuWeather RSS widget

by AccuWeather

CVEs (1)

  • CVE-2025-5015HigJun 25, 2025
    risk 0.57cvss 8.8epss 0.00

    A cross-site scripting vulnerability exists in the AccuWeather and Custom RSS widget that allows an unauthenticated user to replace the RSS feed URL with a malicious one.