2 matches found
CVE-2026-48839
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP Statistics allows DOM-Based XSS. This issue affects WP Statistics: from n/a through 14.16.6...
CVE-2025-62006
CVE-2025-62006 refers to a Missing Authorization vulnerability in the WordPress WP SMS plugin (VeronaLabs WP SMS wp-sms) affecting versions up to 7.0.1. The connected documents identify this as a Broken Access Control issue that could enable an attack with network access, low privileges required,...