WordPress Fable Extra plugin <= 1.0.6 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by stealthcopter in WordPress Plugin Fable Extra versions = 1.0.6...

WordPress Fable Extra plugin <= 1.0.6 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by timomangcut in WordPress Plugin Fable Extra versions = 1.0.6...

WordPress Fable Extra plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by timomangcut in WordPress Plugin Fable Extra versions = 1.0.6...

CVE-2025-46447

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra fable-extra allows DOM-Based XSS.This issue affects Fable Extra: from n/a through = 1.0.6...

CVE-2025-46447 WordPress Fable Extra <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra allows DOM-Based XSS. This issue affects Fable Extra: from n/a through 1.0.6...

CVE-2025-46447

CVE-2025-46447 describes a DOM-based XSS in the WordPress plugin Fable Extra (versions up to 1.0.6). The issue arises from improper input neutralization during web page generation, enabling cross-site scripting through the affected plugin’s rendering path. Public references identify Fable Extra

CVE-2025-46447 WordPress Fable Extra plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra fable-extra allows DOM-Based XSS.This issue affects Fable Extra: from n/a through = 1.0.6...

WordPress plugin Fable Extra 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

PT-2025-17771 · Unknown · Fable Extra

Name of the Vulnerable Software and Affected Versions: Fable Extra versions 1.0.0 through 1.0.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker could...

Final Fable - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Final Fable published at the 'play' market has multiple vulnerabilities...

Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks

Advisory Name: Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Discovered by: Fable Greets: 0x29A Crew, !AM Crew, Atomix, d3thstar, mgrd, rootthief.com. Versions: ?? Description cPanel & WebHost Manager WHM is a next generation web hosting control panel system. Both...