Lucene search
+L

4 matches found

NVD
NVD
added 2025/02/25 3:15 p.m.7 views

CVE-2025-26893

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kiran Potphode Easy Charts easy-charts allows DOM-Based XSS.This issue affects Easy Charts: from n/a through = 1.2.3...

6.5CVSS0.00236EPSS
Exploits0References1
CVE
CVE
added 2025/02/25 2:17 p.m.54 views

CVE-2025-26893

CVE-2025-26893 (Easy Charts, WordPress) : A DOM-based XSS in Easy Charts up to version 1.2.3. Root cause: improper neutralization of input during web page generation. Impact: authenticated attackers could inject script via the affected chart rendering path. Remediation: upgrade to the patched ver...

6.5CVSS7.2AI score0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/25 2:17 p.m.12 views

CVE-2025-26893 WordPress Easy Charts plugin <= 1.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kiran Potphode Easy Charts easy-charts allows DOM-Based XSS.This issue affects Easy Charts: from n/a through = 1.2.3...

6.5CVSS8.6AI score0.00236EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/25 2:17 p.m.18 views

CVE-2025-26893 WordPress Easy Charts plugin <= 1.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kiran Potphode Easy Charts easy-charts allows DOM-Based XSS.This issue affects Easy Charts: from n/a through = 1.2.3...

6.5CVSS0.00236EPSS
Exploits0References1
Rows per page
Query Builder