Lucene search
K

4 matches found

Circl
Circl
added 2025/06/27 9:53 a.m.5 views

CVE-2025-5398

creationtimestamp| type| source ---|---|--- 2025-06-27 09:53:54+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19683...

6.4CVSS4.8AI score0.00198EPSS
Exploits0References1
CVE
CVE
added 2025/06/27 9:23 a.m.29 views

CVE-2025-5398

CVE-2025-5398 affects Ninja Forms – The Contact Form Builder That Grows With You (WordPress plugin). The CVE describes a Stored Cross-Site Scripting (CSTI) vulnerability due to insufficient output escaping in the templating engine, impacting all versions up to and including 3.10.2.1. Exploitation...

6.4CVSS5.8AI score0.00198EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/27 9:23 a.m.4 views

CVE-2025-5398 Ninja Forms <= 3.10.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via CSTI

The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the use of a templating engine in all versions up to, and including, 3.10.2.1 due to insufficient output escaping on user data passed through the template. This mak...

6.4CVSS5.9AI score0.00198EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/06/26 10:46 p.m.6 views

WordPress Ninja Forms plugin <= 3.10.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via CSTI vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via CSTI vulnerability discovered by Asaf Mozes in WordPress Plugin Ninja Forms versions = 3.10.2.1...

6.4CVSS5.5AI score0.00198EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder