9 matches found
CVE-2025-23768
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in inwavethemes InFunding infunding allows Reflected XSS.This issue affects InFunding: from n/a through = 1.0...
EUVD-2025-3402
Malicious code in bioql PyPI...
CVE-2025-23768
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in inwavethemes InFunding infunding allows Reflected XSS.This issue affects InFunding: from n/a through = 1.0...
CVE-2025-23768
CVE-2025-23768 : Reflected Cross‑Site Scripting in the WordPress plugin InFunding (NotFound InFunding) affects versions up to 1.0. The issue arises from improper input neutralization during web page generation. CVSS 3.1 base score 7.1 (HIGH) with network attack vector, required user interaction, ...
CVE-2025-23768 WordPress InFunding plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in inwavethemes InFunding infunding allows Reflected XSS.This issue affects InFunding: from n/a through = 1.0...
CVE-2025-23768 WordPress InFunding plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in inwavethemes InFunding infunding allows Reflected XSS.This issue affects InFunding: from n/a through = 1.0...
WordPress plugin InFunding 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-5076 · Infunding · Infunding
Name of the Vulnerable Software and Affected Versions: InFunding versions n/a through 1.0 Description: The issue is related to improper neutralization of input during web page generation, which allows for Reflected XSS. This means that an attacker can inject malicious scripts into the website,...
WordPress InFunding plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin InFunding versions = 1.0...