Lucene search
+L

4 matches found

circl
circl
added 2025/04/18 1:58 a.m.7 views

CVE-2025-2613

creationtimestamp| type| source ---|---|--- 2025-04-18 01:58:01+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12377 2025-04-18 06:28:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln2ykw3ous2b 2025-04-18 06:32:46+00:00| seen|...

4.4CVSS7.8AI score0.00207EPSS
Exploits0References3
cve
cve
added 2025/04/18 1:44 a.m.64 views

CVE-2025-2613

The CVE-2025-2613 entry concerns the WordPress plugin Login Manager – Design Login Page, View Login Activity, Limit Login Attempts, with Stored XSS in the Custom logo and background URLs, affecting all versions up to 2.0.5. The root cause is insufficient input sanitization and output escaping, en...

4.4CVSS4.4AI score0.00207EPSS
Exploits0References2
cvelist
cvelist
added 2025/04/18 1:44 a.m.23 views

CVE-2025-2613 Login Manager – Design Login Page, View Login Activity, Limit Login Attempts <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom URL

The Login Manager – Design Login Page, View Login Activity, Limit Login Attempts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom logo and background URLs in all versions up to, and including, 2.0.5 due to insufficient input sanitization and output escaping. This makes...

4.4CVSS0.00207EPSS
Exploits0References2
patchstack
patchstack
added 2025/04/17 5:27 p.m.6 views

WordPress Login Manager plugin <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom URL vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Custom URL vulnerability discovered by Arshid KV in WordPress Plugin Login Manager versions = 2.0.5...

4.4CVSS6.3AI score0.00207EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder