3 matches found
CVE-2025-22804
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paul Bearne Author Avatars List/Block author-avatars allows Stored XSS.This issue affects Author Avatars List/Block: from n/a through = 2.1.23...
CVE-2025-22804
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paul Bearne Author Avatars List/Block author-avatars allows Stored XSS.This issue affects Author Avatars List/Block: from n/a through = 2.1.23...
CVE-2025-22804
CVE-2025-22804 affects the WordPress plugin Author Avatars List/Block. It is a stored XSS vulnerability exploitable by authenticated users with Contributor+ access (due to insufficient input neutralization in Author Avatars List/Block