CVE-2025-28943

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in mylo2h2s DP ALTerminator – Missing ALT manager allows Stored XSS. This issue affects DP ALTerminator – Missing ALT manager: from n/a through 1.0.2.

More information : https://patchstack.com/database/wordpress/plugin/dp-alterminator-missing-alt-manager/vulnerability/wordpress-dp-alterminator-missing-alt-manager-plugin-1-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve