2 matches found
CVE-2025-46500 WordPress Wordpress Auto Spinner plugin <= 3.26.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ValvePress Wordpress Auto Spinner wp-auto-spinner allows Reflected XSS.This issue affects Wordpress Auto Spinner: from n/a through = 3.26.0...
CVE-2025-46500
CVE-2025-46500 affects ValvePress WordPress plugin WordPress Auto Spinner (≤3.25.0). It is a reflected XSS caused by improper neutralization of input during web page generation, with CVSS v3.1 base score 7.1 (HIGH). Patchstack and Red Hat/RH advisories indicate a fix is available in later version...