3 matches found
CVE-2025-26980
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wired Impact Wired Impact Volunteer Management wired-impact-volunteer-management allows Stored XSS.This issue affects Wired Impact Volunteer Management: from n/a through = 2.5...
CVE-2025-26980 WordPress Wired Impact Volunteer Management plugin <= 2.5 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wired Impact Wired Impact Volunteer Management wired-impact-volunteer-management allows Stored XSS.This issue affects Wired Impact Volunteer Management: from n/a through = 2.5...
CVE-2025-26980
CVE-2025-26980 is a stored XSS vulnerability in Wired Impact Volunteer Management. The vulnerability affects the WordPress plugin in versions up to 2.5 and is described as an Authenticated (Contributor+) Stored Cross-Site Scripting issue. The CVE entry provides a CVSS 3.1 base score of 6.5 (Mediu...