2 matches found
WordPress BBCode Deluxe plugin <= 2020.08.01.2 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by johska in WordPress Plugin BBCode Deluxe versions = 2020.08.01.2...
CVE-2025-46479
The CVE-2025-46479 entry concerns a DOM-based XSS in the WordPress BBCode Deluxe plugin. Affected versions are BBCode Deluxe up to 2020.08.01.2, with the root cause described as improper input neutralization during web page generation. The CVSS vector provided (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L...