Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:17 a.m.8 views

CVE-2025-23865

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pressfore Winning Portfolio winning-portfolio allows Stored XSS.This issue affects Winning Portfolio: from n/a through = 1.1...

6.5CVSS7.2AI score0.00357EPSS
Exploits0References1
Circl
Circl
added 2025/01/16 9:18 p.m.6 views

CVE-2025-23865

creationtimestamp| type| source ---|---|--- 2025-01-16 21:18:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7exvos32n...

6.5CVSS7AI score0.00357EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.5 views

CVE-2025-23865

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pressfore Winning Portfolio winning-portfolio allows Stored XSS.This issue affects Winning Portfolio: from n/a through = 1.1...

6.5CVSS0.00357EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:7 p.m.42 views

CVE-2025-23865

CVE-2025-23865 is a Stored XSS in the Winning Portfolio WordPress plugin caused by improper input neutralization during web page generation. Affected range is listed as up to version 1.1 (exact patched version not provided). Connected Red Hat and ENISA entries repeat the same description. No expl...

6.5CVSS7.2AI score0.00357EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 8:7 p.m.20 views

CVE-2025-23865 WordPress Winning Portfolio plugin <= 1.1 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pressfore Winning Portfolio winning-portfolio allows Stored XSS.This issue affects Winning Portfolio: from n/a through = 1.1...

6.5CVSS0.00357EPSS
Exploits0References1
Rows per page
Query Builder