Lucene search
K

6 matches found

Patchstack
Patchstack
added 2025/06/02 7:53 p.m.7 views

WordPress Real Cookie Banner Pro plugin < 5.1.6 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Real Cookie Banner Pro versions 5.1.6...

4.8CVSS7.4AI score0.0021EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/06/02 7:47 p.m.7 views

WordPress Real Cookie Banner plugin < 5.1.6 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Real Cookie Banner versions 5.1.6...

4.8CVSS7.4AI score0.0021EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/06/02 6:15 a.m.12 views

CVE-2025-1485

The Real Cookie Banner: GDPR & ePrivacy Cookie Consent WordPress plugin before 5.1.6, real-cookie-banner-pro WordPress plugin before 5.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even wh...

4.8CVSS0.0021EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/06/02 6:0 a.m.7 views

CVE-2025-1485 Real Cookie Banner < 5.1.6 - Admin+ Stored XSS

The Real Cookie Banner: GDPR & ePrivacy Cookie Consent WordPress plugin before 5.1.6, real-cookie-banner-pro WordPress plugin before 5.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even wh...

4.7AI score0.0021EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/02 6:0 a.m.19 views

CVE-2025-1485 Real Cookie Banner < 5.1.6 - Admin+ Stored XSS

The Real Cookie Banner: GDPR & ePrivacy Cookie Consent WordPress plugin before 5.1.6, real-cookie-banner-pro WordPress plugin before 5.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even wh...

0.0021EPSS
Exploits1References1
CVE
CVE
added 2025/06/02 6:0 a.m.64 views

CVE-2025-1485

Concrete details confirm a Stored XSS vulnerability in the Real Cookie Banner and Real Cookie Banner Pro WordPress plugins, before version 5.1.6. Root cause: some settings are not sanitised/escaped, allowing high-privilege users (e.g., admins) to perform stored XSS even with unfiltered_html disal...

4.8CVSS5.8AI score0.0021EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder