920 matches found
CVE-2025-25131
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in randyjensen RJ Quickcharts rj-quickcharts allows Stored XSS.This issue affects RJ Quickcharts: from n/a through = 0.6.1...
CVE-2025-25115
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zeshan Abdullah Like dislike plus counter like-dislike-plus-counter allows Stored XSS.This issue affects Like dislike plus counter: from n/a through = 1.0...
CVE-2025-25113
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Senktec Implied Cookie Consent implied-cookie-consent allows Reflected XSS.This issue affects Implied Cookie Consent: from n/a through = 1.3...
CVE-2025-25121
Cross-Site Request Forgery CSRF vulnerability in shyammakwana Theme Options Z theme-options-z allows Cross Site Request Forgery.This issue affects Theme Options Z: from n/a through = 1.4...
CVE-2025-25112
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kareemsultan Social Links social-links allows Command Line Execution through SQL Injection.This issue affects Social Links: from n/a through = 1.2...
CVE-2025-25119
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alejandro Aranda Woocommerce osCommerce Sync woo-oscommerce-sync allows Reflected XSS.This issue affects Woocommerce osCommerce Sync: from n/a through = 2.0.20...
CVE-2025-25118
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Danish Ali Malik Top Bar – PopUps – by WPOptin wpoptin allows Reflected XSS.This issue affects Top Bar – PopUps – by WPOptin: from n/a through = 2.0.8...
CVE-2025-25090
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dreamstime Dreamstime Stock Photos dreamstime-stock-photos allows Reflected XSS.This issue affects Dreamstime Stock Photos: from n/a through = 4.1...
CVE-2025-25087
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tim seekXL Snapr seekxl-snapr allows Reflected XSS.This issue affects seekXL Snapr: from n/a through = 2.0.6...
CVE-2025-23956
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Richard Leishman WP Easy Post Mailer wp-mailer allows Reflected XSS.This issue affects WP Easy Post Mailer: from n/a through = 0.64...
CVE-2025-25084
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in antrouss UniTimetable unitimetable allows Stored XSS.This issue affects UniTimetable: from n/a through = 1.1...
CVE-2025-25070
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ed atrero Album Reviewer albumreviewer allows Stored XSS.This issue affects Album Reviewer: from n/a through = 2.0.2...
CVE-2025-25083
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dave Lavoie EP4 More Embeds ep4-more-embeds allows Stored XSS.This issue affects EP4 More Embeds: from n/a through = 1.0.0...
CVE-2025-23904
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rebrandpress Rebrand Fluent Forms rebrand-fluent-forms allows Reflected XSS.This issue affects Rebrand Fluent Forms: from n/a through = 1.0...
CVE-2025-23881
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in littlejon LJ Custom Menu Links lj-custom-menu-links allows Reflected XSS.This issue affects LJ Custom Menu Links: from n/a through = 2.5...
CVE-2025-23945
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Webliup Popliup popliup allows PHP Local File Inclusion.This issue affects Popliup: from n/a through = 1.1.1...
CVE-2025-23883
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in unalignedcoder Stray Random Quotes stray-quotes allows Reflected XSS.This issue affects Stray Random Quotes: from n/a through = 1.9.9...
CVE-2025-23813
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tony Hayes Guten Free Options guten-free-options allows Reflected XSS.This issue affects Guten Free Options: from n/a through = 0.9.7...
CVE-2025-23850
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mojowill Mojo Under Construction mojo-under-construction allows Reflected XSS.This issue affects Mojo Under Construction: from n/a through = 1.1.2...
CVE-2025-23814
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Like Box crudlab-facebook-like-box allows Reflected XSS.This issue affects CRUDLab Like Box: from n/a through = 2.0.9...