Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2026/06/05 7:39 p.m.11 views

CVE-2026-7475

The Sky Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sky-custom-scripts custom post type in all versions up to, and including, 3.3.2. This is due to the custom post type being registered with capabilitytype = 'post' and showinrest = true, combined with...

6.4CVSS5.6AI score0.00244EPSS
Exploits0References1
nvd
nvd
added 2026/05/08 10:16 a.m.15 views

CVE-2026-7475

The Sky Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sky-custom-scripts custom post type in all versions up to, and including, 3.3.2. This is due to the custom post type being registered with capabilitytype = 'post' and showinrest = true, combined with...

6.4CVSS0.00244EPSS
Exploits0References7
cvelist
cvelist
added 2026/05/08 9:26 a.m.40 views

CVE-2026-7475 Sky Addons <= 3.3.2 - Authenticated (Author+) Stored Cross-Site Scripting via Custom Script

The Sky Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sky-custom-scripts custom post type in all versions up to, and including, 3.3.2. This is due to the custom post type being registered with capabilitytype = 'post' and showinrest = true, combined with...

6.4CVSS0.00244EPSS
Exploits0References7
attackerkb
attackerkb
added 2026/05/08 9:26 a.m.7 views

CVE-2026-7475

The Sky Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sky-custom-scripts custom post type in all versions up to, and including, 3.3.2. This is due to the custom post type being registered with capabilitytype = 'post' and showinrest = true, combined with...

6.4CVSS6AI score0.00244EPSS
Exploits0References8
cve
cve
added 2026/05/08 9:26 a.m.25 views

CVE-2026-7475

The Sky Addons (WordPress) plugin, specifically Sky Elementor Addons with Widgets & Templates versions

6.4CVSS6AI score0.00244EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.16 views

PT-2026-38904

Name of the Vulnerable Software and Affected Versions Sky Addons versions prior to 3.3.3 Description The Sky Addons plugin for WordPress allows authenticated attackers with Author-level access or higher to inject arbitrary web scripts. This occurs because the sky-custom-scripts custom post type i...

6.4CVSS5.9AI score0.00244EPSS
Exploits0References10
Rows per page
Query Builder