4 matches found
CVE-2025-24558
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks CRM Perks support-x allows Reflected XSS.This issue affects CRM Perks: from n/a through = 1.1.5...
CVE-2025-24558
creationtimestamp| type| source ---|---|--- 2025-02-14 13:17:52+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li5c2b2ymv2d 2025-02-14 15:23:51+00:00| seen| https://infosec.exchange/users/cve/statuses/114002927989112888 2025-02-14 15:45:40+00:00| seen|...
CVE-2025-24558 WordPress CRM Perks plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks CRM Perks support-x allows Reflected XSS.This issue affects CRM Perks: from n/a through = 1.1.5...
CVE-2025-24558
CVE-2025-24558 is a noted Reflected Cross‑Site Scripting vulnerability in the WordPress plugin CRM Perks (versions <= 1.1.5). The root cause is improper neutralization of input during web page generation , allowing an attacker to trigger a reflected XSS. Affected product: WordPress CRM Perks p...