2 matches found
CVE-2025-47615
CVE-2025-47615 is a Stored XSS in the WordPress plugin Amazon Product in a Post by flowdee, affecting versions n/a through 5.2.2. The issue stems from improper input neutralization during web page generation. Public sources (NVD/PATCHSTACK/Wordfence listing) indicate the vulnerability exists and ...
PT-2025-20183 · Unknown · Flowdee Amazon Product In A Post
Name of the Vulnerable Software and Affected Versions: flowdee Amazon Product in a Post versions n/a through 5.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...