Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/16 1:19 p.m.7 views

CVE-2025-24558

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks CRM Perks support-x allows Reflected XSS.This issue affects CRM Perks: from n/a through = 1.1.5...

7.1CVSS5.9AI score0.00241EPSS
Exploits0References1
Circl
Circl
added 2025/02/14 1:17 p.m.5 views

CVE-2025-24558

creationtimestamp| type| source ---|---|--- 2025-02-14 13:17:52+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li5c2b2ymv2d 2025-02-14 15:23:51+00:00| seen| https://infosec.exchange/users/cve/statuses/114002927989112888 2025-02-14 15:45:40+00:00| seen|...

7.1CVSS5.8AI score0.00241EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/14 12:44 p.m.12 views

CVE-2025-24558 WordPress CRM Perks plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks CRM Perks support-x allows Reflected XSS.This issue affects CRM Perks: from n/a through = 1.1.5...

7.1CVSS5.9AI score0.00241EPSS
Exploits0References1
CVE
CVE
added 2025/02/14 12:44 p.m.47 views

CVE-2025-24558

CVE-2025-24558 is a noted Reflected Cross‑Site Scripting vulnerability in the WordPress plugin CRM Perks (versions &lt;= 1.1.5). The root cause is improper neutralization of input during web page generation , allowing an attacker to trigger a reflected XSS. Affected product: WordPress CRM Perks p...

7.1CVSS5.9AI score0.00241EPSS
Exploits0References1
Rows per page
Query Builder