Lucene search
K

4 matches found

Patchstack
Patchstack
added 2025/07/21 1:41 a.m.7 views

WordPress Temporarily Hidden Content plugin <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by muhammad yudha in WordPress Plugin Temporarily Hidden Content versions = 1.0.6...

6.4CVSS5.5AI score0.00218EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/07/19 6:35 a.m.19 views

CVE-2025-7658

creationtimestamp| type| source ---|---|--- 2025-07-19 06:35:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lucdubwifz2t...

6.4CVSS4.8AI score0.00218EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/19 2:22 a.m.6 views

CVE-2025-7658 Temporarily Hidden Content <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Temporarily Hidden Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'temphc-start' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.9AI score0.00218EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/19 2:22 a.m.16 views

CVE-2025-7658 Temporarily Hidden Content <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Temporarily Hidden Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'temphc-start' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00218EPSS
Exploits0References3
Rows per page
Query Builder