1605 matches found
CVE-2025-23513
Cross-Site Request Forgery CSRF vulnerability in jd7777 Bible Embed bible-embed allows Stored XSS.This issue affects Bible Embed: from n/a through = 0.0.4...
CVE-2025-23890
CVE-2025-23890 is a DOM-based XSS in the Easy Tweet Embed WordPress plugin (authors Tom Ewer and Tito Pandu) that affects Easy Tweet Embed up to version 1.7. The description notes an improper neutralization of input during web page generation. Affected product/versions are specified; no exploitat...
CVE-2025-23890 WordPress Easy Tweet Embed plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tom Ewer Easy Tweet Embed easy-tweet-embed allows DOM-Based XSS.This issue affects Easy Tweet Embed: from n/a through = 1.7...
CVE-2025-23890 WordPress Easy Tweet Embed plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tom Ewer Easy Tweet Embed easy-tweet-embed allows DOM-Based XSS.This issue affects Easy Tweet Embed: from n/a through = 1.7...
CVE-2025-23841
CVE-2025-23841 affects the WordPress plugin Top Flash Embed (top-flash-embed). Public records indicate a stored Cross-Site Scripting (XSS) vulnerability due to improper input neutralization during web page generation, allowing stored XSS in Top Flash Embed versions up to and including 0.3.4. The ...
CVE-2025-23841 WordPress Top Flash Embed plugin <= 0.3.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in foo123 Top Flash Embed top-flash-embed allows Stored XSS.This issue affects Top Flash Embed: from n/a through = 0.3.4...
CVE-2025-23807 WordPress Spiderpowa Embed PDF plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jim2212001 Spiderpowa Embed PDF spiderpowa-embed-pdf allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a through = 1.0...
CVE-2025-23807 WordPress Spiderpowa Embed PDF plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jim2212001 Spiderpowa Embed PDF spiderpowa-embed-pdf allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a through = 1.0...
CVE-2025-23807
CVE-2025-23807 is associated with the Spiderpowa Embed PDF WordPress plugin and is described in Red Hat advisory as an Improper Neutralization of Input During Web Page Generation leading to Stored XSS in Spiderpowa Embed PDF (affecting versions up to 1.0). The connected Red Hat document confirms ...
CVE-2025-23513 WordPress Bible Embed plugin <= 0.0.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Joshua Wieczorek Bible Embed allows Stored XSS.This issue affects Bible Embed: from n/a through 0.0.4...
CVE-2025-23513 WordPress Bible Embed plugin <= 0.0.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in jd7777 Bible Embed bible-embed allows Stored XSS.This issue affects Bible Embed: from n/a through = 0.0.4...
CVE-2025-23513
CVE-2025-23513 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Bible Embed plugin for WordPress that enables Stored XSS. The entry indicates Bible Embed vulnerable from n/a through 0.0.4, with a CVSS v3.1 base score of 7.1 (HIGH) and impact vector: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I...
WordPress Easy Tweet Embed plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Easy Tweet Embed versions = 1.7...
WordPress Top Flash Embed plugin <= 0.3.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Top Flash Embed versions = 0.3.4...
WordPress Spiderpowa Embed PDF plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Spiderpowa Embed PDF versions = 1.0...
WordPress HSS Embed Streaming Video plugin <= 3.23 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin HSS Embed Streaming Video versions = 3.23...
WordPress Bible Embed plugin <= 0.0.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Bible Embed versions = 0.0.4...
WordPress Blrt WP Embed plugin <= 1.6.9 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin Blrt WP Embed versions = 1.6.9...
PT-2025-5173 · Unknown · Easy Tweet Embed
Name of the Vulnerable Software and Affected Versions: Easy Tweet Embed versions 1.7 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting'. This allows for DOM-Based XSS attacks. Recommendations: For...
WordPress plugin Easy Tweet Embed 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...