CVE-2025-58211

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Stored XSS.This issue affects Chatbox Manager: from n/a through = 1.2.6...

CVE-2025-58211

CVE-2025-58211 covers a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Chatbox Manager (versions up to and including 1.2.6). The issue arises from improper neutralization of input during web page generation, resulting in a stored XSS that can affect users who view vulnerable pag...

PT-2025-34922 · Unknown · Alexvtn Chatbox Manager

Name of the Vulnerable Software and Affected Versions: alexvtn Chatbox Manager versions through 1.2.6 Description: The software contains a Stored Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. This allows for the injection of malicious scripts...

CVE-2025-49884

Missing Authorization vulnerability in alexvtn Internal Linking of Related Contents internal-linking-of-related-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Internal Linking of Related Contents: from n/a through = 1.1.8...

PT-2025-29727 · Unknown · Alexvtn Chatbox Manager

Name of the Vulnerable Software and Affected Versions: alexvtn Chatbox Manager versions through 1.2.5 Description: The software contains a missing authorization flaw due to incorrectly configured access control security levels. Recommendations: Update alexvtn Chatbox Manager to a version later th...

PT-2025-7224 · Unknown · Alexvtn Content Snippet Manager

Name of the Vulnerable Software and Affected Versions: alexvtn Content Snippet Manager versions 1.1.5 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...