CVE-2025-23998 – Rara Theme UltraLight Cross-site Scripting (XSS)

January 21, 2025
3:17 pm

CVE ID : CVE-2025-23998

Published : Jan. 21, 2025, 2:15 p.m. | 1 hour, 2 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Rara Theme UltraLight allows Reflected XSS. This issue affects UltraLight: from n/a through 1.2.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-23998 – Rara Theme UltraLight Cross-site Scripting (XSS)

Elvescore.io

Recent Posts

CVE-2022-49043 – Libxml2 XML XInclude Use-After-Free Vulnerability

CVE-2024-10574 – “Quiz Maker Business, Developer, and Agency WordPress Unauthorized Modification and Cross-Site Scripting Vulnerability”

CVE-2024-10628 – Woocommerce Quiz Maker SQL Injection Vulnerability

CVE-2024-10633 – Quiz Maker Business, Developer, and Agency WordPress Plugin Shortcode Injection Vulnerability

CVE-2024-10636 – Quiz Maker Business/Developer/Agency WordPress Reflected Cross-Site Scripting

CVE-2025-24858 – Develocity Gradle Enterprise Password Hash Exposure

CVE-2025-23998 – Rara Theme UltraLight Cross-site Scripting (XSS)

CVE-2025-23998 – Rara Theme UltraLight Cross-site Scripting (XSS)