CVE-2025-23687

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in simonhunter Woo Store Mode woo-store-mode allows Reflected XSS.This issue affects Woo Store Mode: from n/a through = 1.0.1...

CVE-2025-23687

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in simonhunter Woo Store Mode woo-store-mode allows Reflected XSS.This issue affects Woo Store Mode: from n/a through = 1.0.1...

CVE-2025-23687

creationtimestamp| type| source ---|---|--- 2025-02-27 16:25:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5704 2025-02-27 19:15:37+00:00| seen| https://t.me/cvedetector/19049 2025-08-22 14:52:22+00:00| seen| MISP/24306fae-b16b-4478-9297-d2973cdb583c 2025-12-30...

CVE-2025-23687 WordPress Woo Store Mode plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in simonhunter Woo Store Mode woo-store-mode allows Reflected XSS.This issue affects Woo Store Mode: from n/a through = 1.0.1...

CVE-2025-23687 WordPress Woo Store Mode plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in simonhunter Woo Store Mode allows Reflected XSS. This issue affects Woo Store Mode: from n/a through 1.0.1...

CVE-2025-23687

CVE-2025-23687 is a Reflected XSS in the WordPress plugin Woo Store Mode (affected: 1.0.1 and earlier). The issue stems from improper input neutralization during web page generation. Public sources (NVD/Red Hat/CIRCL) confirm the vulnerability and provide a CVSS v3.1 base score of 7.1 (HIGH) , wi...

CVE-2024-23687

creationtimestamp| type| source ---|---|--- 2024-01-19 23:21:56+00:00| seen| https://t.me/ctinow/170464 2024-02-15 19:56:25+00:00| seen| https://t.me/ctinow/185830...

CVE-2024-23687

Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines...

CVE-2024-23687 FOLIO mod-data-export-spring Hard-Coded Credentials

Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines...

CVE-2024-23687

CVE-2024-23687 affects the FOLIO module-data-export-spring. The issue arises from hard-coded credentials in the module, allowing unauthenticated access to critical APIs and enabling modification of user data, configurations (including single sign-on), and fees/fines. Affected versions are before ...

CVE-2023-23687

creationtimestamp| type| source ---|---|--- 2023-01-23 20:24:02+00:00| seen| https://t.me/cibsecurity/56864...

CVE-2023-23687

Auth. Stored Cross-Site Scripting XSS vulnerability in Youtube shortcode = 1.8.5 versions...

CVE-2023-23687 WordPress Youtube shortcode Plugin <= 1.8.5 is vulnerable to Cross Site Scripting (XSS)

Auth. Stored Cross-Site Scripting XSS vulnerability in Youtube shortcode = 1.8.5 versions...

CVE-2022-23687

CVE-2022-23687 affects ArubaOS-CX switches, where multiple vulnerabilities in the LLDP service arise from how packet data is processed. Affected versions are ArubaOS-CX 10.09.xxxx (≤10.09.1010), 10.08.xxxx (≤10.08.1050), and 10.06.xxxx (≤10.06.0190). Successful exploitation may impact the availab...