WordPress Tapfiliate Plugin <= 3.2.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Gilang Asra Bilhadi - DJ in WordPress Plugin Tapfiliate versions = 3.2.2...

CVE-2025-58689

CVE-2025-58689 : Affected software is Tapfiliate (WordPress plugin) up to version 3.2.2. The issue is an authenticated Stored Cross-Site Scripting (XSS) vulnerability in web page generation, as described in the CVE entry and corroborated by the Wordfence vulnerability details. The CVSS base score...

WordPress plugin Tapfiliate 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-sit...

PT-2025-38977

Name of the Vulnerable Software and Affected Versions Tapfiliate versions through 3.2.2 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Cross-site Scripting issue. This allows for Stored XSS attacks. The issue involves the...