CVE-2025-31624 WordPress Processing Projects plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LABCAT Processing Projects allows DOM-Based XSS. This issue affects Processing Projects: from n/a through 1.0.2...

CVE-2025-31624 WordPress Processing Projects plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LABCAT Processing Projects processing-projects allows DOM-Based XSS.This issue affects Processing Projects: from n/a through = 1.0.2...

CVE-2025-31562

CVE-2025-31562 is a DOM-based Cross-Site Scripting in the Uptime Robot Plugin for WordPress (uptime-robot-monitor), affecting WordPress plugins versions up to 2.3. The issue arises from improper neutralization of input during web page generation. The Wordfence entry lists this vulnerability with ...

CVE-2025-31562 WordPress Uptime Robot Plugin for WordPress plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aphotrax Uptime Robot Plugin for WordPress allows DOM-Based XSS. This issue affects Uptime Robot Plugin for WordPress: from n/a through 2.3...

CVE-2025-31559

CVE-2025-31559 is a DOM-based XSS vulnerability in the Custom Database Applications by Caspio plugin for WordPress. The issue is described as Improper Neutralization of Input During Web Page Generation, enabling DOM-based cross-site scripting in Custom Database Applications by Caspio, affecting v...

CVE-2025-31557 WordPress OSM plugin <= 6.1.13 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM osm allows DOM-Based XSS.This issue affects OSM: from n/a through = 6.1.13...

CVE-2025-31557 WordPress OSM – OpenStreetMap plugin <= 6.1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM – OpenStreetMap allows DOM-Based XSS. This issue affects OSM – OpenStreetMap: from n/a through 6.1.6...

CVE-2025-31549

CVE-2025-31549 is an authenticated (Contributor+) Stored Cross-Site Scripting vulnerability in Fusion Page Builder (Fusion) by Agency Dominion Inc., affecting Fusion versions up to and including 1.6.3. The Wordfence vulnerability entry indicates the flaw exists in Fusion

CVE-2025-31543 WordPress Twice Commerce plugin <= 1.3.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Twice Commerce Twice Commerce allows DOM-Based XSS. This issue affects Twice Commerce: from n/a through 1.3.1...

CVE-2025-31543

CVE-2025-31543 is a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin Twice Commerce . The description specifies improper input neutralization during web page generation, enabling DOM-level XSS. Affected software is listed as “Twice Commerce: from n/a through 1.3.1,” indicating...

CVE-2025-31535

CVE-2025-31535 affects Simple Owl Carousel (WordPress plugin) with a DOM-based XSS due to improper input neutralization during web page generation. Affected versions: 1.1.1 and earlier (n/a through 1.1.1). Exploitation details are not provided in the supplied documents. CVSS v3.1 base score is 6....

CVE-2025-30963

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetSmartFilters jet-smart-filters allows DOM-Based XSS.This issue affects JetSmartFilters: from n/a through = 3.6.3...

CVE-2025-31419

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeix Churel allows DOM-Based XSS.This issue affects Churel: from n/a through 1.0.8...

CVE-2025-31419

CVE-2025-31419 is a DOM-based XSS in the WordPress theme Churel (Themeix), affecting versions up to 1.0.8. The vulnerability is a Cross-Site Scripting flaw caused by improper input neutralization during web page generation. Impact is rated low for confidentiality, integrity, and availability (per...

CVE-2025-31419 WordPress Churel plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeix Churel allows DOM-Based XSS.This issue affects Churel: from n/a through 1.0.8...

CVE-2025-30963

CVE-2025-30963 : JetSmartFilters for Elementor is affected up to version 3.6.3 with a DOM-based XSS vector due to improper neutralization of input during web page generation (described as Cross-site Scripting). Exploitation may occur in contexts where user-controlled input influences the DOM. Aff...

CVE-2025-30963 WordPress JetSmartFilters plugin <= 3.6.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetSmartFilters jet-smart-filters allows DOM-Based XSS.This issue affects JetSmartFilters: from n/a through = 3.6.3...

CVE-2025-30961

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tinuzz Trackserver trackserver allows DOM-Based XSS.This issue affects Trackserver: from n/a through = 5.1.0...

CVE-2025-30961

CVE-2025-30961 affects the Trackserver plugin (tinuzz Trackserver) for WordPress. It is a Cross-Site Scripting vulnerability (DOM-based/Stored per sources) arising from improper neutralization of input during web page generation, enabling script execution. The WordPress vulnerability listing indi...

CVE-2025-30961 WordPress Trackserver plugin <= 5.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tinuzz Trackserver trackserver allows DOM-Based XSS.This issue affects Trackserver: from n/a through = 5.1.0...