2 matches found
CVE-2025-23876
CVE-2025-23876 is a stored XSS in the WordPress plugin WP krpano (Jens Remus) affecting WP krpano versions up to 1.2.1. The Red Hat entry reaffirms: “Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability” that affects WP krpano from n/a through 1.2.1. ...
CVE-2025-23876 WordPress WP krpano plugin <= 1.2.1 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in No-Nonsense WP krpano wp-krpano allows Stored XSS.This issue affects WP krpano: from n/a through = 1.2.1...