WordPress Spirit Framework plugin <= 1.2.13 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Plugin Spirit Framework versions = 1.2.13...

CVE-2025-49428

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dourou Cookie Warning allows Stored XSS. This issue affects Cookie Warning: from n/a through 1.3...