I
mproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez Theme - Functionality houzez-theme-functionality.This issue affects Houzez Theme - Functionality: from n/a through < 4.2.0.
References
Configurations
No configuration.
History
20 Jan 2026, 15:17
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
13 Nov 2025, 11:17
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
06 Nov 2025, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
06 Nov 2025, 16:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-11-06 16:16
Updated : 2026-01-20 15:17
NVD link : CVE-2025-62057
Mitre link : CVE-2025-62057
CVE.ORG link : CVE-2025-62057
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')