5 matches found
CVE-2025-22308
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Takashi Kitajima Smart Custom Fields smart-custom-fields allows Stored XSS.This issue affects Smart Custom Fields: from n/a through = 5.0.0...
CVE-2025-22308
creationtimestamp| type| source ---|---|--- 2025-01-07 11:17:31+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jm37cij22 2025-01-07 13:55:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113787412270028155...
CVE-2025-22308 WordPress Smart Custom FIelds plugin <= 5.0.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in inc2734 Smart Custom Fields allows Stored XSS.This issue affects Smart Custom Fields: from n/a through 5.0.0...
CVE-2025-22308 WordPress Smart Custom FIelds plugin <= 5.0.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Takashi Kitajima Smart Custom Fields smart-custom-fields allows Stored XSS.This issue affects Smart Custom Fields: from n/a through = 5.0.0...
CVE-2025-22308
CVE-2025-22308 is a stored XSS vulnerability in WordPress plugin Smart Custom Fields (aka Smart Custom Fields by Takashi Kitajima). The issue affects Smart Custom Fields versions up to 5.0.0 and is tied to improper input neutralization during web page generation (stored XSS). The vulnerability is...