4 matches found
CVE-2025-48256
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xylus Themes Import Social Events import-facebook-events allows Stored XSS.This issue affects Import Social Events: from n/a through = 1.8.5...
CVE-2025-48256 WordPress Import Social Events plugin <= 1.8.5 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xylus Themes Import Social Events import-facebook-events allows Stored XSS.This issue affects Import Social Events: from n/a through = 1.8.5...
CVE-2025-48256
CVE-2025-48256 covers a Stored XSS in the WordPress plugin Import Social Events (versions ≤ 1.8.5) by Xylus Themes. The issue stems from improper input neutralization during web page generation, enabling an attacker-supplied payload to be stored and later executed in a victim’s browser. The vulne...
CVE-2025-48256 WordPress Import Social Events <= 1.8.5 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xylus Themes Import Social Events allows Stored XSS. This issue affects Import Social Events: from n/a through 1.8.5...