CVE-2025-32623

The CVE-2025-32623 entry concerns PlainInventory (WordPress plugin) with a CSRF to Stored XSS issue affecting versions up to 3.1.9. The connected Wordfence vulnerability listing confirms the issue and indicates the patch status as Unpatched (no publicly released fix details in the provided docume...

CVE-2025-32623 WordPress PlainInventory plugin <= 3.1.9 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in plainware PlainInventory z-inventory-manager allows Stored XSS.This issue affects PlainInventory: from n/a through = 3.1.9...

WordPress PlainInventory plugin <= 3.1.9 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin PlainInventory versions = 3.1.9...

CVE-2025-24557 WordPress PlainInventory plugin <= 3.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in plainware PlainInventory z-inventory-manager allows Reflected XSS.This issue affects PlainInventory: from n/a through = 3.1.5...