CVE-2025-27108 | ryansolid dom-expressions up to 0.39.4 replace cross site scripting (GHSA-hw62-58pr-7wc5)

Posted by Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability was found in ryansolid dom-expressions up to 0.39.4. It has been declared as problematic. This vulnerability affects the function replace. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2025-27108. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27108 | ryansolid dom-expressions up to 0.39.4 replace cross site scripting (GHSA-hw62-58pr-7wc5)

Related Posts

CVE-2024-45348 | Xiaomi Router AX9000 1.0.173 command injection

CVE-2024-4637 | Slider Revolution Plugin up to 6.7.10 on WordPress Elementor cross site scripting

CVE-2024-29843 | CS Technologies Australia Evolution Controller up to 2.04.560.31.03.2024 Web Interface information disclosure

CVE-2023-47548 | SoftLab Integrate Google Drive Plugin up to 1.3.2 on WordPress redirect