2 matches found
WordPress Goracash Plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Vinit Lakra in WordPress Plugin Goracash versions = 1.1...
CVE-2025-53458
CVE-2025-53458 describes a Stored Cross-Site Scripting (XSS) in Goracash for WordPress, caused by improper neutralization of input during web page generation. Affected: Goracash plugin versions up to 1.1 (description notes “from n/a through 1.1”). The impact is stored XSS, enabling an attacker to...