4 matches found
CVE-2025-46239
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Theme Switcha theme-switcha allows Stored XSS.This issue affects Theme Switcha: from n/a through = 3.4...
WordPress Theme Switcha plugin <= 3.4 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Theme Switcha versions = 3.4...
CVE-2025-46239
creationtimestamp| type| source ---|---|--- 2025-04-22 10:03:09+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12828 2025-04-22 11:05:02+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnfju6rdyo2v 2025-04-22 14:13:37+00:00| seen|...
CVE-2025-46239
CVE-2025-46239 affects Theme Switcha (WordPress plugin) up to version 3.4. It is a Stored XSS caused by improper input neutralization during web page generation. The impact is that malicious input could execute scripts in users’ browsers when viewing affected pages. Mitigation: update to a versio...