EUVD-2025-3950

Malicious code in bioql PyPI...

CVE-2025-24810

Cross-site scripting vulnerability exists in Simple Image Sizes 3.2.3 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen...

WordPress Simple Image Sizes plugin <= 3.2.2- Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

WordPress Simple Image Sizes plugin = 3.2.2- Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by ier2317 in WordPress Plugin Simple Image Sizes versions = 3.2.2...

CVE-2025-24810

Cross-site scripting vulnerability exists in Simple Image Sizes 3.2.3 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen...

WordPress Plugin "Simple Image Sizes" vulnerable to cross-site scripting

Overview WordPress Plugin "Simple Image Sizes" provided by Rahe contains a stored cross-site scripting vulnerability CWE-79. Ibuki Sato of Nippon Engineering College of Hachioji reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

CVE-2025-24810

Cross-site scripting vulnerability exists in Simple Image Sizes 3.2.3 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen...

CVE-2025-24810

Cross-site scripting vulnerability exists in Simple Image Sizes 3.2.3 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen...

CVE-2025-24810

CVE-2025-24810 affects the WordPress plugin Simple Image Sizes (versions ≤ 3.2.3). The observed issue is a cross-site scripting vulnerability that, if exploited, can execute arbitrary script in the web browser of an admin user when accessing the settings screen. The root cause is a stored XSS vec...

WordPress plugin Simple Image Sizes 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

JVN#88046370: WordPress Plugin "Simple Image Sizes" vulnerable to cross-site scripting

WordPress Plugin "Simple Image Sizes" provided by Rahe contains a stored cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen...

PT-2025-5579 · Unknown · Simple Image Sizes

Name of the Vulnerable Software and Affected Versions: Simple Image Sizes versions 3.2.3 and earlier Description: A cross-site scripting issue exists, allowing an arbitrary script to be executed on the web browser of a user with administrative privileges who accesses the settings screen. This can...