Vulners
Lucene search
CVE-2025-1267 Groundhogg <= 3.7.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via label Parameter
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2025-1267 | 1 Apr 202507:32 | – | circl |
 | WordPress plugin Groundhogg 跨站脚本漏洞 | 1 Apr 202500:00 | – | cnnvd |
 | CVE-2025-1267 | 1 Apr 202506:52 | – | cve |
 | EUVD-2025-9326 | 3 Oct 202520:07 | – | euvd |
 | CVE-2025-1267 | 1 Apr 202507:15 | – | nvd |
 | WordPress Groundhogg plugin <= 3.7.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via label Parameter vulnerability | 31 Mar 202519:57 | – | patchstack |
 | PT-2025-14086 · WordPress · Groundhogg | 1 Apr 202500:00 | – | ptsecurity |
 | CVE-2025-1267 | 7 Jan 202609:18 | – | redhatcve |
 | CVE-2025-1267 Groundhogg <= 3.7.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via label Parameter | 1 Apr 202506:52 | – | vulnrichment |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (March 31, 2025 to April 6, 2025) | 10 Apr 202514:38 | – | wordfence |
10
[
{
"vendor": "trainingbusinesspros",
"product": "Groundhogg — CRM, Newsletters, and Marketing Automation",
"versions": [
{
"version": "0",
"status": "affected",
"lessThanOrEqual": "3.7.4.1",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Apr 2026 17:01Current
CVSS 3.15.5
EPSS0.0064