4 matches found
CVE-2025-5532
The CVE-2025-5532 issue affects the Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress. It is a Stored Cross-Site Scripting vulnerability in the emd_mb_meta shortcode, present in all versions up to 1.9.0. Exploitation requires authenticated access at contributor level or h...
CVE-2025-5532 Faculty Staff and Student Directory Plugin – Campus Directory <= 1.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emdmbmeta' shortcode in all versions up to, and including, 1.9.0 due to insufficient input sanitization and output escaping on user...
CVE-2025-5532 Faculty Staff and Student Directory Plugin – Campus Directory <= 1.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emdmbmeta' shortcode in all versions up to, and including, 1.9.0 due to insufficient input sanitization and output escaping on user...
PT-2025-23737 · WordPress · Campus Directory – Faculty
Name of the Vulnerable Software and Affected Versions: Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress versions up to, and including, 1.9.0 Description: The issue is related to Stored Cross-Site Scripting via the plugin's emd mb meta shortcode due to insufficient input...