Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 4:42 p.m.7 views

CVE-2025-27314

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kush Sharma Kush Micro News kush-micro-news allows Stored XSS.This issue affects Kush Micro News: from n/a through = 1.6.7...

7.1CVSS7.2AI score0.00257EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 4:15 p.m.5 views

CVE-2025-27314

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kush Sharma Kush Micro News kush-micro-news allows Stored XSS.This issue affects Kush Micro News: from n/a through = 1.6.7...

7.1CVSS0.00257EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/17 3:47 p.m.16 views

CVE-2025-27314 WordPress Kush Micro News Plugin <= 1.6.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kush Sharma Kush Micro News kush-micro-news allows Stored XSS.This issue affects Kush Micro News: from n/a through = 1.6.7...

7.1CVSS0.00257EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/17 3:47 p.m.7 views

CVE-2025-27314 WordPress Kush Micro News Plugin <= 1.6.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kush Sharma Kush Micro News kush-micro-news allows Stored XSS.This issue affects Kush Micro News: from n/a through = 1.6.7...

7.1CVSS8.6AI score0.00257EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:47 p.m.45 views

CVE-2025-27314

CVE-2025-27314 affects the Kush Micro News WordPress plugin. It allows stored XSS via improper input neutralization during web page generation, impacting 1.6.7 and earlier. No patch/version fix details are provided in the supplied documents; monitoring for an official fix is advised.

7.1CVSS7.2AI score0.00257EPSS
Exploits0References1
Rows per page
Query Builder