CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/06/19 3:21 p.m.•10 views

CVE-2025-49855

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Meks Meks Flexible Shortcodes meks-flexible-shortcodes allows DOM-Based XSS.This issue affects Meks Flexible Shortcodes: from n/a through = 1.3.7...

RedhatCVE•added 2025/06/19 3:20 p.m.•4 views

CVE-2025-49878

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Greg Winiarski WPAdverts wpadverts allows DOM-Based XSS.This issue affects WPAdverts: from n/a through = 2.2.4...

RedhatCVE•added 2025/06/19 3:20 p.m.•9 views

CVE-2025-49882

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Tauqeer CubeWP cubewp-framework allows DOM-Based XSS.This issue affects CubeWP: from n/a through = 1.1.23...

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49878

NVD•added 2025/06/17 3:15 p.m.•10 views

CVE-2025-49882

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49855

Cvelist•added 2025/06/17 3:1 p.m.•9 views

CVE-2025-49855 WordPress Meks Flexible Shortcodes plugin <= 1.3.7 - Cross Site Scripting (XSS) Vulnerability

CVE•added 2025/06/17 3:1 p.m.•14 views

CVE-2025-49855

CVE-2025-49855 affects the WordPress plugin Meks Flexible Shortcodes (versions from unknown up to and including 1.3.7). The issue is an DOM-based Cross-Site Scripting (XSS) vulnerability resulting from improper input neutralization during web page generation. Public references confirm the vulnera...

Vulnrichment•added 2025/06/17 3:1 p.m.•3 views

CVE-2025-49855 WordPress Meks Flexible Shortcodes plugin <= 1.3.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Meks Meks Flexible Shortcodes allows DOM-Based XSS. This issue affects Meks Flexible Shortcodes: from n/a through 1.3.7...

6.5CVSS6.5AI score0.00156EPSS

Vulnrichment•added 2025/06/17 3:1 p.m.•3 views

CVE-2025-49878 WordPress WPAdverts plugin <= 2.2.4 - Cross Site Scripting (XSS) Vulnerability

CVE•added 2025/06/17 3:1 p.m.•21 views

CVE-2025-49878

CVE-2025-49878 is a DOM-based XSS in the WPAdverts WordPress plugin, affecting versions up to 2.2.4 due to improper input neutralization during web page generation. Exploitation details are not specified in the provided documents, but Wordfence and Red Hat entries indicate the issue has been patc...

Cvelist•added 2025/06/17 3:1 p.m.•11 views

CVE-2025-49878 WordPress WPAdverts plugin <= 2.2.4 - Cross Site Scripting (XSS) Vulnerability

Cvelist•added 2025/06/17 3:1 p.m.•13 views

CVE-2025-49882 WordPress CubeWP Framework plugin <= 1.1.23 - Cross Site Scripting (XSS) Vulnerability

Vulnrichment•added 2025/06/17 3:1 p.m.•5 views

CVE-2025-49882 WordPress CubeWP Framework plugin <= 1.1.23 - Cross Site Scripting (XSS) Vulnerability

CVE•added 2025/06/17 3:1 p.m.•19 views

CVE-2025-49882

CVE-2025-49882 is a cross-site scripting vulnerability in the WordPress CubeWP Framework, identified as a DOM-based XSS due to improper input neutralization in web page generation. Affected software is CubeWP Framework versions up to and including 1.1.23. Public sources corroborate the issue with...