4 matches found
CVE-2025-31461
CVE-2025-31461 is a Reflected XSS in NanoSupport (WordPress plugin) affecting versions
CVE-2025-31461 WordPress NanoSupport plugin <= 0.6.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mayeenul Islam NanoSupport nanosupport allows Reflected XSS.This issue affects NanoSupport: from n/a through = 0.6.0...
CVE-2025-31376
CVE-2025-31376 describes a Missing Authorization vulnerability in the WordPress plug‑in NanoSupport (by Mayeenul Islam). The issue allows access control bypass due to misconfigured security levels, affecting NanoSupport versions from “n/a” through and including
CVE-2025-31376 WordPress NanoSupport plugin <= 0.6.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Mayeenul Islam NanoSupport nanosupport allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects NanoSupport: from n/a through = 0.6.0...