3 matches found
CVE-2025-5275
creationtimestamp| type| source ---|---|--- 2025-06-26 03:48:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19568 2025-06-26 07:01:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsikkrzh3n2o...
CVE-2025-5275 Charitable <= 1.8.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin's Privacy Settings
The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the privacy settings fields in all versions up to, and including, 1.8.6.1 due to insufficient input sanitization and output escaping...
WordPress Charitable plugin <= 1.8.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin's Privacy Settings vulnerability
Authenticated Administrator+ Stored Cross-Site Scripting via Plugin's Privacy Settings vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Charitable versions = 1.8.6.1...