Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/10/23 9:13 a.m.14 views

CVE-2025-11867

The Bg Book Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bookauthor post meta, rendered through the bookauthor shortcode, in all versions up to, and including, 1.25. This is due to the plugin not properly escaping the meta value before output. This makes it...

6.4CVSS5AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 8:27 a.m.4 views

EUVD-2025-35334

The Bg Book Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bookauthor post meta, rendered through the bookauthor shortcode, in all versions up to, and including, 1.25. This is due to the plugin not properly escaping the meta value before output. This makes it...

6.4CVSS4.6AI score0.00176EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/22 8:27 a.m.6 views

CVE-2025-11867 Bg Book Publisher <= 1.25 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Bg Book Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bookauthor post meta, rendered through the bookauthor shortcode, in all versions up to, and including, 1.25. This is due to the plugin not properly escaping the meta value before output. This makes it...

6.4CVSS4.7AI score0.00176EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/22 8:27 a.m.9 views

CVE-2025-11867 Bg Book Publisher <= 1.25 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Bg Book Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bookauthor post meta, rendered through the bookauthor shortcode, in all versions up to, and including, 1.25. This is due to the plugin not properly escaping the meta value before output. This makes it...

6.4CVSS0.00176EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/10/21 11:55 p.m.7 views

WordPress Bg Book Publisher plugin <= 1.25 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Bg Book Publisher versions = 1.25...

6.4CVSS5.6AI score0.00176EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder