3 matches found
CVE-2025-3749
creationtimestamp| type| source ---|---|--- 2025-04-24 23:09:23+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13365 2025-04-25 03:18:14+00:00| seen| https://t.me/cvedetector/23714...
CVE-2025-3749
CVE-2025-3749 — Breeze Display (WordPress) Stored XSS : WordPress Breeze Display plugin versions up to 1.2.3 allow stored cross-site scripting via the cal_size parameter due to insufficient input sanitization and output escaping. Exploitation requires authentication at Contributor level or higher...
WordPress Breeze Display plugin <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via cal_size Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via calsize Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Breeze Display versions = 1.2.3...