CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Vulnrichment•added 2025/04/17 3:16 p.m.•5 views

CVE-2025-39432 WordPress bbPress2 shortcode whitelist plugin <= 2.2.1 - CSRF to XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in antonchanning bbPress2 shortcode whitelist allows Stored XSS. This issue affects bbPress2 shortcode whitelist: from n/a through 2.2.1...

7.1CVSS6.7AI score0.00235EPSS

Exploits0References1

CVE•added 2025/04/17 3:16 p.m.•41 views

CVE-2025-39432

CVE-2025-39432 is a CSRF-to-XSS vulnerability in the WordPress plugin “bbPress2 shortcode whitelist” (affected versions 2.2.1 and earlier). The issue enables stored XSS via improper input neutralization during web page generation. Public details confirm affected software and the vulnerability cla...

7.1CVSS7.2AI score0.00235EPSS

Exploits0References1

Cvelist•added 2025/04/17 3:16 p.m.•10 views

CVE-2025-39432 WordPress bbPress2 shortcode whitelist plugin <= 2.2.1 - CSRF to XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in antonchanning bbPress2 shortcode whitelist bbpress2-shortcode-whitelist allows Stored XSS.This issue affects bbPress2 shortcode whitelist: from n/a through = 2.2.1...

7.1CVSS0.00235EPSS

Exploits0References1