CVE-2025-60154

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jennifer Moss MWW Disclaimer Buttons mww-disclaimer-buttons allows Stored XSS.This issue affects MWW Disclaimer Buttons: from n/a through = 3.41...

CVE-2025-6686

The WordPress plugin Magic Buttons for Elementor is affected by a stored cross-site scripting (XSS) flaw in the magic-button shortcode due to insufficient input sanitization and output escaping of user-supplied attributes. Affected versions include all up to 1.0; PT-Security notes versions prior ...

WordPress plugin Easy Social Share Buttons security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in WordPress plugi...

WordPress Social Essentials Social Stats And Sharing Buttons 1.3.1 XSS Vulnerability

WordPress Social Essentials Social Stats and Sharing Buttons plugin version 1.3.1 suffers from a cross site scripting vulnerability. WordPress Social Essentials Social Stats And Sharing Buttons 1.3.1 XSS Vulnerability Plugin Name : Social Essentials Social Stats and Sharing Buttons Effected Versi...