2 matches found
CVE-2025-7431
CVE-2025-7431 affects the WordPress Knowledge Base plugin. Vulnerability type: Stored Cross-Site Scripting via the plugin slug setting due to insufficient input sanitization and output escaping. Affected versions: all up to 2.3.1. Exploitation requires authenticated admin access (administrator+)....
WordPress Knowledge Base plugin <= 2.3.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Slug vulnerability
Authenticated Administrator+ Stored Cross-Site Scripting via Plugin Slug vulnerability discovered by Đỗ Quang Huy in WordPress Plugin Knowledge Base versions = 2.3.1...