5 matches found
CVE-2025-27014
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in designingmedia Hostiko hostiko allows Reflected XSS.This issue affects Hostiko: from n/a through 30.1...
CVE-2025-27014
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in designingmedia Hostiko hostiko allows Reflected XSS.This issue affects Hostiko: from n/a through 30.1...
CVE-2025-27015
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designingmedia Hostiko hostiko allows PHP Local File Inclusion.This issue affects Hostiko: from n/a through 30.1...
CVE-2025-27014
CVE-2025-27014 describes a Cross-Site Scripting flaw in the WordPress Hostiko theme prior to version 30.1, caused by improper input neutralization during web page generation. The vulnerability affects the Hostiko theme (WordPress plugin/theme) before 30.1 and is characterized by a reflected XSS, ...
CVE-2025-27015
CVE-2025-27015: WordPress Hostiko theme (designingmedia)