134 matches found
CVE-2025-52771 WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bcupham Video Expander video-expander allows Stored XSS.This issue affects Video Expander: from n/a through = 1.0...
CVE-2025-52771
CVE-2025-52771 affects the WordPress plugin Video Expander (versions up to 1.0). The issue is a Stored Cross-Site Scripting (XSS) vulnerability arising from improper input neutralization during web page generation. Impact is outlined as cross-site scripting with potential data exposure or session...
WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin Video Expander versions = 1.0...
PT-2025-33365 · WordPress · Bcupham Video Expander
Name of the Vulnerable Software and Affected Versions: bcupham Video Expander versions through 1.0 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations: Update bcupham Video...
WordPress plugin Video Expander 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-46593
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCSI subsystem, specifically within the pm80xx driver. The issue involves an array-index-out-of-bounds condition that occurs during the removal of a...
WordPress Abbie Expander plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Abbie Expander plugin that stems from improper handling of input during page generation and can be exploited by an...
Vulnerability of the _scsih_expander_node_remove() function in the drivers/scsi/mpt3sas/mpt3sas_scsih.c module – This driver is a Linux system kernel driver for supporting SCSI devices. It allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the scsihexpandernoderemove function in the drivers/scsi/mpt3sas/mpt3sasscsih.c module – The drivers for SCSI devices in Linux operating systems are related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...
CVE-2025-49427
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...
CVE-2025-49421
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...
CVE-2025-49427
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...
CVE-2025-49421
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...
CVE-2025-49421 WordPress WP Text Expander plugin <= 1.0.1 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...
CVE-2025-49421
Summary (CVE-2025-49421) An SQL Injection vulnerability exists in the WordPress plugin “WP Text Expander” (Andrei Filonov) affecting version range from an unknown starting point up to and including 1.0.1. The root cause is improper neutralization of SQL commands, enabling attackers with authentic...
CVE-2025-49421 WordPress WP Text Expander <= 1.0.1 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander allows SQL Injection. This issue affects WP Text Expander: from n/a through 1.0.1...
CVE-2025-49427
CVE-2025-49427 is a Stored XSS in the Abbie Expander WordPress plugin (
CVE-2025-49427 WordPress Abbie Expander plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...
CVE-2025-49427 WordPress Abbie Expander <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander allows Stored XSS. This issue affects Abbie Expander: from n/a through 1.0.1...
PT-2025-24257 · WordPress · Wp Text Expander
Name of the Vulnerable Software and Affected Versions: WP Text Expander versions 1.0.1 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations:...
WordPress plugin Abbie Expander 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Abbie Expander plugin that stems from improper handling of input during page generation and can be exploited by an...