4 matches found
CVE-2025-1232
creationtimestamp| type| source ---|---|--- 2025-03-19 06:52:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8027 2025-03-19 07:57:40+00:00| seen| https://t.me/cvedetector/20623 2025-03-19 16:30:54+00:00| seen| Telegram/1nxUJd1r2Vli3BcLbYFmcRkQRAx1kOCE3f---QAF-WqkIU 2025-03-19 16:48:40+00:0...
CVE-2025-1232
The Site Reviews WordPress plugin before 7.2.5 does not properly sanitise and escape some of its Review fields, which could allow unauthenticated users to perform Stored XSS attacks...
CVE-2025-1232 Site Reviews < 7.2.5 - Unauthenticated Stored XSS
The Site Reviews WordPress plugin before 7.2.5 does not properly sanitise and escape some of its Review fields, which could allow unauthenticated users to perform Stored XSS attacks...
CVE-2025-1232
CVE-2025-1232 concerns the Site Reviews WordPress plugin. Public sources in the connected documents indicate that prior to version 7.2.5, the plugin fails to properly sanitize and escape certain Review fields, enabling stored cross-site scripting (Stored XSS) by unauthenticated users. The vulnera...