CVE-2025-23924

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeremy WP Photo Sphere wp-photo-sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a through = 3.8...

EUVD-2025-3539

Malicious code in bioql PyPI...

CVE-2025-23924

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeremy WP Photo Sphere wp-photo-sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a through = 3.8...

CVE-2025-23924 WordPress WP Photo Sphere plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeremy WP Photo Sphere wp-photo-sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a through = 3.8...

CVE-2025-23924

CVE-2025-23924 is a stored XSS vulnerability in the WordPress plugin WP Photo Sphere, described as an improper neutralization of input during web page generation. Affected software is WP Photo Sphere up to version 3.8. The connected Red Hat and ENISA entries confirm the vulnerability exists but d...

PT-2025-5203 · Jérémy Heleine · Wp Photo Sphere

Name of the Vulnerable Software and Affected Versions: WP Photo Sphere versions n/a through 3.8 Description: The issue affects Jérémy Heleine WP Photo Sphere, allowing Stored XSS due to improper neutralization of input during web page generation. This enables attackers to inject malicious scripts...

WordPress plugin WP Photo Sphere 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...