GHSA-c7x5-qpfw-5h38HighCVSS 7.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

Published
May 27, 2026
Last Modified
May 27, 2026

🔗 CVE IDs covered (1)

CVE-2025-52747

📋 Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jthemes Themebox - Digital Products Ecommerce allows Reflected XSS.

This issue affects Themebox - Digital Products Ecommerce: from n/a through 1.4.2.

🔗 References (3)