3 matches found
CVE-2025-62139
Insertion of Sensitive Information Into Sent Data vulnerability in Vladimir Statsenko Terms descriptions terms-descriptions allows Retrieve Embedded Sensitive Data.This issue affects Terms descriptions: from n/a through = 3.4.10...
PT-2025-54345
Name of the Vulnerable Software and Affected Versions Vladimir Statsenko Terms descriptions versions through 3.4.9 Description A flaw exists in Vladimir Statsenko Terms descriptions that allows retrieval of embedded sensitive data due to insertion of sensitive information into sent data...
CVE-2023-28779
CVE-2023-28779 affects the WordPress plugin “Terms descriptions” by Vladimir Statsenko. The vulnerability is an unauthenticated Reflected Cross-Site Scripting (XSS) in terms descriptions plugin versions ≤ 3.4.4. The issue arises from the plugin’s handling of input that can be reflected in output,...