Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/07 9:50 a.m.9 views

CVE-2025-24660

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wp.insider Simple Membership Custom Messages simple-membership-custom-messages allows Reflected XSS.This issue affects Simple Membership Custom Messages: from n/a through = 2.4...

7.1CVSS7.2AI score0.00303EPSS
Exploits0References1
NVD
NVD
added 2025/02/03 3:15 p.m.5 views

CVE-2025-24660

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wp.insider Simple Membership Custom Messages simple-membership-custom-messages allows Reflected XSS.This issue affects Simple Membership Custom Messages: from n/a through = 2.4...

7.1CVSS0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/03 2:22 p.m.20 views

CVE-2025-24660 WordPress Simple Membership Custom Messages Plugin <= 2.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wp.insider Simple Membership Custom Messages simple-membership-custom-messages allows Reflected XSS.This issue affects Simple Membership Custom Messages: from n/a through = 2.4...

7.1CVSS0.00303EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/03 2:22 p.m.8 views

CVE-2025-24660 WordPress Simple Membership Custom Messages Plugin <= 2.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wp.insider Simple Membership Custom Messages allows Reflected XSS. This issue affects Simple Membership Custom Messages: from n/a through 2.4...

7.1CVSS6.9AI score0.00303EPSS
Exploits0References1
CVE
CVE
added 2025/02/03 2:22 p.m.50 views

CVE-2025-24660

CVE-2025-24660 is a reflected XSS in the WordPress plugin Simple Membership Custom Messages (wp.insider) affecting versions up to 2.4. The issue stems from improper neutralization of input during web page generation, enabling reflected scripts to execute in the context of a victim’s browser. Docu...

7.1CVSS7.2AI score0.00303EPSS
Exploits0References1
Rows per page
Query Builder