Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/05 1:41 p.m.19 views

CVE-2025-26879

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...

7.1CVSS7.2AI score0.00294EPSS
Exploits0References1
Circl
Circl
added 2025/03/03 2:30 p.m.5 views

CVE-2025-26879

creationtimestamp| type| source ---|---|--- 2025-03-03 14:30:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6220...

7.1CVSS8.7AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2025/03/03 2:15 p.m.9 views

CVE-2025-26879

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...

7.1CVSS0.00294EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/03 1:30 p.m.5 views

CVE-2025-26879 WordPress s2Member Plugin <= 241216 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cristián Lávaque s2Member s2member allows Reflected XSS.This issue affects s2Member: from n/a through = 241216...

7.1CVSS8.6AI score0.00294EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 1:30 p.m.61 views

CVE-2025-26879

CVE-2025-26879 is a Reflected Cross‑Site Scripting (XSS) vulnerability affecting the WordPress plugin s2Member (Pro, up to build 241216). The issue arises from improper input neutralization during web page generation, enabling a reflected XSS payload to be executed in the context of a user’s brow...

7.1CVSS7.2AI score0.00294EPSS
Exploits0References1
Rows per page
Query Builder