CVE-2026-2825 - rachelos WeRSS we-mp-rss Article fix.py fix_html cross site scripting

CVE ID : CVE-2026-2825 Published : Feb. 20, 2026, 6:02 a.m. | 45 minutes ago Description : A vulnerability has been found in rachelos WeRSS we-mp-rss up to 1.4.8. This impacts the function fix_html of the file tools/fix.py of the component Article Module. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...