3 matches found
CVE-2025-50037
CVE-2025-50037 is a DOM-based Cross‑Site Scripting vulnerability in the WordPress plugin Buying Buddy IDX CRM (versions through 2.3.0). The issue arises from improper neutralization of input during web page generation, enabling arbitrary scripts to run in a victim’s browser. Impact per sources: p...
CVE-2025-50037 WordPress Buying Buddy IDX CRM plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Buying Buddy Buying Buddy IDX CRM buying-buddy-idx-crm allows DOM-Based XSS.This issue affects Buying Buddy IDX CRM: from n/a through = 2.3.0...
WordPress Buying Buddy IDX CRM plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Peter Thaleikis in WordPress Plugin Buying Buddy IDX CRM versions = 2.3.0...