4 matches found
CVE-2025-24694
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CreativeMindsSolutions CM Pop-Up banners cm-pop-up-banners allows Reflected XSS.This issue affects CM Pop-Up banners: from n/a through = 1.7.6...
CVE-2025-24694 WordPress CM Pop-Up Banners plugin <= 1.7.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CreativeMindsSolutions CM Pop-Up banners cm-pop-up-banners allows Reflected XSS.This issue affects CM Pop-Up banners: from n/a through = 1.7.6...
CVE-2025-24694
CVE-2025-24694: Reflected XSS in CM E‑Mail Blacklist plugin for WordPress (CM E‑Mail Registration Blacklist and Whitelist) up to version 1.5.5. Public descriptions confirm improper input neutralization during web page generation as the root cause. Affected software is the CM E‑Mail Blacklist plug...
PT-2024-34814
Name of the Vulnerable Software and Affected Versions: CM Email Registration Blacklist and Whitelist WordPress plugin versions prior to 1.4.9 Description: The issue allows attackers to perform actions on the blacklist or whitelist menu without the admin's knowledge or consent, potentially leading...