2 matches found
WordPress PressApps Knowledge Base Contextual Sidebar Addon Plugin <= 4.2.1 - PHP Object Injection Vulnerability
PHP Object Injection Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin PressApps Knowledge Base Contextual Sidebar Addon versions = 4.2.1...
CVE-2025-49400
CVE-2025-49400 describes a stored Cross-Site Scripting (XSS) vulnerability in the WordPress plugin “WP Visitor Statistics (Real Time Traffic)” (osama.esh). Affected versions are up to 8.2. The CVE indicates improper neutralization of input during web page generation, enabling stored XSS; CVSS v3....