CVE-2025-53320

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wp Enhanced Free Downloads EDD allows DOM-Based XSS. This issue affects Free Downloads EDD: from n/a through 1.0.4...

CVE-2025-53276

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in omnipressteam Omnipress omnipress allows DOM-Based XSS.This issue affects Omnipress: from n/a through = 1.6.4...

CVE-2025-53199

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Slider For Elementor ht-slider-for-elementor allows DOM-Based XSS.This issue affects HT Slider For Elementor: from n/a through = 1.6.5...

CVE-2025-53320

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wp Enhanced Free Downloads EDD allows DOM-Based XSS. This issue affects Free Downloads EDD: from n/a through 1.0.4...

CVE-2025-53321

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raise The Money Raise The Money raise-the-money allows DOM-Based XSS.This issue affects Raise The Money: from n/a through = 5.2...

CVE-2025-53292

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in samsk WP DataTable wp-datatable allows DOM-Based XSS.This issue affects WP DataTable: from n/a through = 0.2.7...

CVE-2025-53279

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aman Popup addon for Ninja Forms popup-addon-for-ninja-forms allows DOM-Based XSS.This issue affects Popup addon for Ninja Forms: from n/a through = 3.4...

CVE-2025-53276

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in omnipressteam Omnipress omnipress allows DOM-Based XSS.This issue affects Omnipress: from n/a through = 1.6.4...

CVE-2025-53275

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VaultDweller Leyka leyka allows DOM-Based XSS.This issue affects Leyka: from n/a through = 3.32.1...

CVE-2025-53199

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Slider For Elementor ht-slider-for-elementor allows DOM-Based XSS.This issue affects HT Slider For Elementor: from n/a through = 1.6.5...

CVE-2025-53202

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CyberChimps Responsive Blocks responsive-block-editor-addons allows DOM-Based XSS.This issue affects Responsive Blocks: from n/a through = 2.0.6...

CVE-2025-53321 WordPress Raise The Money plugin <= 5.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raise The Money Raise The Money raise-the-money allows DOM-Based XSS.This issue affects Raise The Money: from n/a through = 5.2...

CVE-2025-53320

CVE-2025-53320 : DOM-based XSS in WordPress plugin Free Downloads EDD (Free Downloads EDD) affecting versions up to 1.0.4. Root cause: improper input neutralization during web page generation leading to cross-site scripting. Public details in connected documents confirm the issue and affected ver...

CVE-2025-53301

CVE-2025-53301 affects Theme Junkie Team Content WordPress plugin (versions ≤ 0.1.1). The vulnerability is a DOM-based XSS caused by improper input neutralization during web page generation. Public details identify the affected software and version range; remediation is not confirmed in the provi...

CVE-2025-53276 WordPress Omnipress plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in omnipressteam Omnipress omnipress allows DOM-Based XSS.This issue affects Omnipress: from n/a through = 1.6.4...

CVE-2025-53275 WordPress Leyka plugin <= 3.32.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VaultDweller Leyka leyka allows DOM-Based XSS.This issue affects Leyka: from n/a through = 3.32.1...

CVE-2025-53202

CVE-2025-53202 is a DOM-based XSS in CyberChimps Responsive Blocks (WordPress) affecting versions n/a–2.0.6. The root cause is improper input neutralization during web page generation, enabling cross-site scripting. The CVSSv3.1 base score is 6.5 (Medium) with network attack vector, low attack co...

PT-2025-27182 · Leyka · Leyka

Name of the Vulnerable Software and Affected Versions: Leyka versions 3.31.9 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject malicious scripts into th...

PT-2025-27186 · Unknown · Popup Addon For Ninja Forms

Name of the Vulnerable Software and Affected Versions: Aman Popup addon for Ninja Forms versions n/a through 3.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an...

PT-2025-27156 · Cyberchimps · Cyberchimps Responsive Blocks

Name of the Vulnerable Software and Affected Versions: CyberChimps Responsive Blocks versions n/a through 2.0.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an...