Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/27 2:31 p.m.5 views

CVE-2025-26937

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.1.3...

6.5CVSS7.2AI score0.00236EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/25 2:17 p.m.16 views

CVE-2025-26937 WordPress Icon List Block plugin <= 1.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.1.3...

6.5CVSS0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/25 2:17 p.m.4 views

CVE-2025-26937 WordPress Icon List Block plugin <= 1.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.1.3...

6.5CVSS8.6AI score0.00236EPSS
Exploits0References1
CVE
CVE
added 2025/02/25 2:17 p.m.62 views

CVE-2025-26937

CVE-2025-26937 is an authenticated stored XSS in the WordPress plugin block Icon List Block . The issue arises from improper input neutralization during web page generation, enabling stored XSS when rendering the Icon List Block. Affected versions range up to 1.1.3 ; Wordfence notes this vulnerab...

6.5CVSS7.2AI score0.00236EPSS
Exploits0References1
Rows per page
Query Builder