2 matches found
CVE-2025-22748 WordPress SetMore Theme – Custom Post Types plugin <= 1.1 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Setmore SetMore Theme – Custom Post Types service-provider-profile-cpt allows Stored XSS.This issue affects SetMore Theme – Custom Post Types: from n/a through = 1.1...
CVE-2025-22748
CVE-2025-22748: Stored XSS in SetMore Theme – Custom Post Types (WordPress) due to improper input neutralization during web page generation. Affected: SetMore Theme – Custom Post Types (versions up to 1.1; vendor not specified in initial doc). Root cause: improper neutralization of input during p...