CVE-2025-22801 – HasThemes Free WooCommerce Theme 99fy Extension Stored XSS

1月 9, 2025
5:16 pm

CVE ID : CVE-2025-22801

Published : Jan. 9, 2025, 4:16 p.m. | 59 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in HasThemes Free WooCommerce Theme 99fy Extension allows Stored XSS.This issue affects Free WooCommerce Theme 99fy Extension: from n/a through 1.2.8.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-22801 – HasThemes Free WooCommerce Theme 99fy Extension Stored XSS

Elvescore.io

Recent Posts

CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)

CVE-2024-13238 – Drupal Typogrify Cross-Site Scripting (XSS)

CVE-2024-13239 – Drupal Two-factor Authentication Authentication Abuse

CVE-2024-13240 – Drupal Open Social Persistent Phantom Access Violation

CVE-2024-13241 – Drupal Open Social Unauthenticated Information Disclosure

CVE-2024-13242 – Drupal Swift Mailer Exposed Resource Location Spoofing

CVE-2025-22801 – HasThemes Free WooCommerce Theme 99fy Extension Stored XSS

CVE-2025-22801 – HasThemes Free WooCommerce Theme 99fy Extension Stored XSS