4 matches found
CVE-2025-2613
creationtimestamp| type| source ---|---|--- 2025-04-18 01:58:01+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12377 2025-04-18 06:28:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln2ykw3ous2b 2025-04-18 06:32:46+00:00| seen|...
CVE-2025-2613
The CVE-2025-2613 entry concerns the WordPress plugin Login Manager – Design Login Page, View Login Activity, Limit Login Attempts, with Stored XSS in the Custom logo and background URLs, affecting all versions up to 2.0.5. The root cause is insufficient input sanitization and output escaping, en...
CVE-2025-2613 Login Manager – Design Login Page, View Login Activity, Limit Login Attempts <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom URL
The Login Manager – Design Login Page, View Login Activity, Limit Login Attempts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom logo and background URLs in all versions up to, and including, 2.0.5 due to insufficient input sanitization and output escaping. This makes...
WordPress Login Manager plugin <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom URL vulnerability
Authenticated Administrator+ Stored Cross-Site Scripting via Custom URL vulnerability discovered by Arshid KV in WordPress Plugin Login Manager versions = 2.0.5...