5 matches found
CVE-2025-26879
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...
CVE-2025-26879
creationtimestamp| type| source ---|---|--- 2025-03-03 14:30:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6220...
CVE-2025-26879
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...
CVE-2025-26879 WordPress s2Member Plugin <= 241216 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...
CVE-2025-26879
CVE-2025-26879 is a Reflected Cross‑Site Scripting (XSS) vulnerability affecting the WordPress plugin s2Member (Pro, up to build 241216). The issue arises from improper input neutralization during web page generation, enabling a reflected XSS payload to be executed in the context of a user’s brow...