CVE-2025-30602

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in alphasis Related Posts via Categories related-posts-via-categories allows Stored XSS.This issue affects Related Posts via Categories: from n/a through = 2.1.2...

CVE-2025-30602

CVE-2025-30602 is a stored XSS in the WordPress plugin Related Posts via Categories (vulnerable up to 2.1.2; root cause: improper input neutralization during web page generation). Impact is cross-site scripting (low- to high-impact user data/session risk per CVSS 3.1: HIGH, 7.1). No exploitation ...