3 matches found
CVE-2025-48263 WordPress MultiVendorX plugin <= 4.2.22 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MultiVendorX MultiVendorX dc-woocommerce-multi-vendor allows Stored XSS.This issue affects MultiVendorX: from n/a through = 4.2.22...
CVE-2025-48263 WordPress MultiVendorX plugin <= 4.2.22 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MultiVendorX MultiVendorX dc-woocommerce-multi-vendor allows Stored XSS.This issue affects MultiVendorX: from n/a through = 4.2.22...
CVE-2025-48263
CVE-2025-48263 describes a Stored Cross-Site Scripting (XSS) in MultiVendorX up to version 4.2.22, caused by improper input neutralization during web page generation. Public sources (NVD, PatchStack, CVE lists) confirm the flaw and assign a medium severity (CVSS 3.1 around 5.4–6.5), with no expli...