4 matches found
CVE-2025-1798
The does not sanitise and escape some parameters when outputting them back in a page, allowing unauthenticated users the ability to perform stored Cross-Site Scripting attacks...
CVE-2025-1798
creationtimestamp| type| source ---|---|--- 2025-03-25 06:23:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8598 2025-03-25 08:49:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ll6va2wpgz24 2025-03-25 09:27:47+00:00| seen| https://t.me/cvedetector/21...
CVE-2025-1798
The does not sanitise and escape some parameters when outputting them back in a page, allowing unauthenticated users the ability to perform stored Cross-Site Scripting attacks...
CVE-2025-1798
CVE-2025-1798 is an unauthenticated stored XSS in Design Comuni Italia WordPress Theme prior to 1.1.2, caused by unescaped/sanitised parameters in output, enabling stored XSS. Affected: Design Comuni Italia Theme (