5 matches found
EUVD-2025-28588
Malicious code in bioql PyPI...
CVE-2025-5540
The Event RSVP and Simple Event Management Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emdmbmeta' shortcode in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...
CVE-2025-5540
The Event RSVP and Simple Event Management Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emdmbmeta' shortcode in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...
CVE-2025-5540 Event RSVP and Simple Event Management Plugin <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Event RSVP and Simple Event Management Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emdmbmeta' shortcode in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...
CVE-2025-5540
CVE-2025-5540 : The WordPress plugin “Event RSVP and Simple Event Management Plugin” is vulnerable to stored XSS via the emd_mb_meta shortcode in all versions up to 4.1.0 due to insufficient input sanitization and output escaping. The vulnerability affects authenticated users with contributor+ pr...