6 matches found
CVE-2025-23522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matthew Haines-Young HM Portfolio hm-portfolio allows Reflected XSS.This issue affects HM Portfolio: from n/a through = 1.1.1...
CVE-2025-23522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matthew Haines-Young HM Portfolio hm-portfolio allows Reflected XSS.This issue affects HM Portfolio: from n/a through = 1.1.1...
CVE-2025-23522
creationtimestamp| type| source ---|---|--- 2025-01-24 10:55:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113882964879856931 2025-01-24 12:43:55+00:00| seen| https://t.me/cvedetector/16264...
CVE-2025-23522 WordPress HM Portfolio plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in humanmade limited, Joe Hoyle, Tom Wilmott, Matthew Haines-Young HM Portfolio allows Reflected XSS. This issue affects HM Portfolio: from n/a through 1.1.1...
CVE-2025-23522
CVE-2025-23522 is a WordPress HM Portfolio plugin vulnerability (Reflected XSS) due to improper input neutralization. Affected product: HM Portfolio (WordPress plugin) versions up to 1.1.1, with CVSS 3.1 base metrics: Network attack vector, Privileges NONE, User Interaction REQUIRED, Scope CHANGE...
CVE-2025-23522 WordPress HM Portfolio plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matthew Haines-Young HM Portfolio hm-portfolio allows Reflected XSS.This issue affects HM Portfolio: from n/a through = 1.1.1...