8 matches found
EUVD-2025-13805
Malicious code in bioql PyPI...
WordPress AWEOS WP Lock plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...
CVE-2025-47522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
CVE-2025-47522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
CVE-2025-47522 WordPress AWEOS WP Lock <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock allows Stored XSS. This issue affects AWEOS WP Lock: from n/a through 1.4.8...
CVE-2025-47522 WordPress AWEOS WP Lock plugin <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
CVE-2025-47522
CVE-2025-47522 affects AWEOS WP Lock (WordPress plugin) via a Stored XSS in input handling during web page generation. Affected: AWEOS WP Lock versions up to 1.4.8. Root cause: improper neutralization of input during page generation. Impact per available data: low-to-moderate (CVE score ~5.9; Con...
PT-2025-20144 · Unknown · Aweos Wp Lock
Name of the Vulnerable Software and Affected Versions: AWEOS WP Lock versions 1.4.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious...