Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 2:53 a.m.4 views

CVE-2025-23535

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in martinziegert REAL WordPress Sidebar drag-and-drop-custom-sidebar allows Stored XSS.This issue affects REAL WordPress Sidebar: from n/a through = 0.1...

7.1CVSS7.2AI score0.00367EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/22 2:29 p.m.6 views

CVE-2025-23535 WordPress REAL WordPress Sidebar plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in clickandsell REAL WordPress Sidebar allows Stored XSS. This issue affects REAL WordPress Sidebar: from n/a through 0.1...

7.1CVSS6.9AI score0.00367EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/22 2:29 p.m.17 views

CVE-2025-23535 WordPress REAL WordPress Sidebar plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in martinziegert REAL WordPress Sidebar drag-and-drop-custom-sidebar allows Stored XSS.This issue affects REAL WordPress Sidebar: from n/a through = 0.1...

7.1CVSS0.00367EPSS
Exploits0References1
CVE
CVE
added 2025/01/22 2:29 p.m.42 views

CVE-2025-23535

CVE-2025-23535 describes a Stored XSS in the REAL WordPress Sidebar plugin (drag-and-drop-custom-sidebar). The common detail across sources attributes the issue to improper neutralization of input during web page generation, enabling an unauthenticated attacker to inject/script content in stored ...

7.1CVSS7.2AI score0.00367EPSS
Exploits0References1
Rows per page
Query Builder