6 matches found
EUVD-2025-24920
Malicious code in bioql PyPI...
CVE-2025-54749
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetProductGallery jet-woo-product-gallery allows Stored XSS.This issue affects JetProductGallery: from n/a through = 2.2.0.2...
CVE-2025-54749
CVE-2025-54749 is a Stored XSS in Crocoblock JetProductGallery (WordPress plugin) affecting versions up to and including 2.2.0.2. The vulnerability stems from improper neutralization of input during web page generation, enabling attacker-controlled scripts to be stored and served to users. Affect...
CVE-2025-54749 WordPress JetProductGallery Plugin <= 2.2.0.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetProductGallery allows Stored XSS. This issue affects JetProductGallery: from n/a through 2.2.0.2...
CVE-2025-54749 WordPress JetProductGallery Plugin <= 2.2.0.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetProductGallery jet-woo-product-gallery allows Stored XSS.This issue affects JetProductGallery: from n/a through = 2.2.0.2...
PT-2025-33395 · WordPress · Crocoblock Jetproductgallery
Name of the Vulnerable Software and Affected Versions: Crocoblock JetProductGallery versions through 2.2.0.2 Description: Improper neutralization of input during web page generation allows for Stored Cross-site Scripting XSS. This issue enables malicious actors to inject scripts into web pages...