Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 9:15 p.m.6 views

CVE-2025-68904

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jegtheme JNews - Frontend Submit jnews-frontend-submit allows Reflected XSS.This issue affects JNews - Frontend Submit: from n/a through = 11.0.0...

7.1CVSS5.4AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:16 p.m.4 views

CVE-2025-68904

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jegtheme JNews - Frontend Submit jnews-frontend-submit allows Reflected XSS.This issue affects JNews - Frontend Submit: from n/a through = 11.0.0...

7.1CVSS0.00186EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.2 views

CVE-2025-68904

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jegtheme JNews - Frontend Submit jnews-frontend-submit allows Reflected XSS.This issue affects JNews - Frontend Submit: from n/a through = 11.0.0...

7.1CVSS5.3AI score0.00186EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.2 views

CVE-2025-68904 WordPress JNews - Frontend Submit plugin <= 11.0.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jegtheme JNews - Frontend Submit jnews-frontend-submit allows Reflected XSS.This issue affects JNews - Frontend Submit: from n/a through = 11.0.0...

7.1CVSS5.9AI score0.00186EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.16 views

CVE-2025-68904

CVE-2025-68904 is a reflected XSS in jegtheme JNews - Frontend Submit. Public details from PT-2026-4106 confirm the flaw exists in versions up to and including 11.0.0, caused by improper neutralization of input during web page generation in the jnews-frontend-submit component. The issue is exploi...

7.1CVSS5.4AI score0.00186EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/22 12:0 a.m.7 views

WordPress plugin JNews – Frontend Submit cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.1CVSS5.7AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder