5 matches found
CVE-2025-23816
creationtimestamp| type| source ---|---|--- 2025-01-16 21:17:13+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7cpqz632r...
CVE-2025-23816
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...
CVE-2025-23816 WordPress Metaphor Widgets plugin <= 2.4 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...
CVE-2025-23816 WordPress Metaphor Widgets plugin <= 2.4 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...
CVE-2025-23816
CVE-2025-23816 (Metaphor Widgets) is an stored XSS in Metaphor Widgets up to version 2.4. The initial document assigns CVSS v3.1 base score 6.5 (MEDIUM) with Network attack vector, Low privileges, user interaction required, and effects on confidentiality, integrity, and availability. Connected Re...