Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.8 views

CVE-2025-1672

The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.5CVSS5.6AI score0.00285EPSS
Exploits0References1
Circl
Circl
added 2025/03/06 9:37 a.m.7 views

CVE-2025-1672

creationtimestamp| type| source ---|---|--- 2025-03-06 09:37:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6658 2025-03-06 13:39:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljpmlaxvn62o 2025-03-06 13:50:32+00:00| seen| https://t.me/cvedetector/19693 2025-03-08...

5.5CVSS8.7AI score0.00285EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/06 9:21 a.m.7 views

CVE-2025-1672 Notibar <= 2.1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.5CVSS5.8AI score0.00285EPSS
Exploits0References3
CVE
CVE
added 2025/03/06 9:21 a.m.65 views

CVE-2025-1672

CVE-2025-1672 refers to Notibar – Notification Bar for WordPress, a stored XSS in admin settings affecting versions up to 2.1.5. The vulnerability requires authenticated attackers with administrator-level privileges (and above) and is limited to multisite setups or installs where unfiltered_html ...

5.5CVSS5.8AI score0.00285EPSS
Exploits0References3
Rows per page
Query Builder