2 matches found
CVE-2025-49437
CVE-2025-49437 affects the WordPress plugin WP LOL Rotation (versions n/a through 1.0). The issue is Improper Neutralization of Input During Web Page Generation, i.e., a Stored XSS vulnerability. Public sources describe the vulnerability and CVSS v3.1 base score of 6.5 (AV:N/AC:L/PR:L/UI:R/S:C/C:...
WordPress WP LOL Rotation <= 1.0 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin WP LOL Rotation versions = 1.0...