15 matches found
EUVD-2025-19967
Malicious code in bioql PyPI...
EUVD-2025-9250
Malicious code in bioql PyPI...
CVE-2025-24771
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Reflected XSS.This issue affects Content Manager Light: from n/a through = 3.2...
CVE-2025-24771
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Reflected XSS.This issue affects Content Manager Light: from n/a through = 3.2...
CVE-2025-24771 WordPress Content Manager Light plugin <= 3.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Reflected XSS.This issue affects Content Manager Light: from n/a through = 3.2...
CVE-2025-24771
CVE-2025-24771 is a Reflected XSS in WordPress content-manager-light (OTWthemes Content Manager Light) affecting versions up to 3.2. The issue arises from improper neutralization of input during web page generation. CVSS v3.1 base score is 7.1 (HIGH) with NETWORK attack vector, user interaction r...
CVE-2025-24771 WordPress Content Manager Light plugin <= 3.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light allows Reflected XSS. This issue affects Content Manager Light: from n/a through 3.2...
WordPress plugin Content Manager Light 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...
CVE-2025-31770
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Stored XSS.This issue affects Content Manager Light: from n/a through = 3.2...
CVE-2025-31770
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Stored XSS.This issue affects Content Manager Light: from n/a through = 3.2...
CVE-2025-31770 WordPress Content Manager Light plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light allows Stored XSS. This issue affects Content Manager Light: from n/a through 3.2...
CVE-2025-31770
CVE-2025-31770 is a Stored XSS in Content Manager Light for WordPress, affecting versions up to 3.2. The issue arises during web page generation and requires authenticated access (Contributor+). The CVSS v3.1 base score is 6.5 (NETWORK access, LOW attack complexity, LOW privileges, UI required; c...
CVE-2025-31770 WordPress Content Manager Light plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes Content Manager Light content-manager-light allows Stored XSS.This issue affects Content Manager Light: from n/a through = 3.2...
PT-2025-14156 · Otwthemes · Otwthemes Content Manager Light
Name of the Vulnerable Software and Affected Versions: OTWthemes Content Manager Light versions n/a through 3.2 Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This means that an attacker can injec...
WordPress plugin Content Manager Light 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...