WordPress plugin ACF Recent Posts Widget 跨站脚本漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin ACF Recent Posts Widget, no...

WordPress plugin Simple Content Templates for Blog Posts & Pages Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

WordPress plugin Revive Old Posts 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-43773

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in magicoders ACF Recent Posts Widget acf-recent-posts-widget allows Stored XSS.This issue affects ACF Recent Posts Widget: from n/a through = 5.9.3...

CVE-2025-6440

creationtimestamp| type| source ---|---|--- 2025-10-24 09:15:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3wjzpxwk22m 2025-10-24 10:05:43+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3wmsnw66f2a 2025-10-30 08:46:17+00:00| seen|...

CVE-2025-11253

creationtimestamp| type| source ---|---|--- 2025-10-24 09:03:40+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3wjdpfwff2b 2025-10-24 10:16:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3wnfztb452f...

CVE-2025-53701

creationtimestamp| type| source ---|---|--- 2025-10-23 14:03:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115423850260835004 2025-10-23 15:40:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3up32zjoy2o...

CVE-2025-62605

Mastodon is a free, open-source social network server based on ActivityPub. In Mastodon version 4.4, support for verifiable quote posts with quote controls was added, but it is possible for an attacker to bypass these controls in Mastodon versions prior to 4.4.8 and 4.5.0-beta.2. Mastodon...

CVE-2025-40780

creationtimestamp| type| source ---|---|--- 2025-10-22 13:56:44+00:00| seen| https://seclists.org/oss-sec/2025/q4/68 2025-10-22 15:58:55+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115418643498336537 2025-10-22 16:26:32+00:00| seen|...

CVE-2025-12036

creationtimestamp| type| source ---|---|--- 2025-10-22 08:08:52+00:00| seen| https://bsky.app/profile/nihonmatsu.bsky.social/post/3m3rfdujt5k2z 2025-10-22 08:08:52+00:00| seen| https://bsky.app/profile/nihonmatsu.bsky.social/post/3m3rfdt6cl22z 2025-10-22 08:55:48+00:00| seen|...

CVE-2025-53072

creationtimestamp| type| source ---|---|--- 2025-10-22 04:33:55+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3qzdj5an22i 2025-10-22 07:21:45+00:00| seen| https://poliverso.org/objects/0477a01e-736b48f2-6409a361f7d72e52 2025-10-22 07:25:50+00:00| seen|...

WordPress Posts By Tag plugin <= 3.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Posts By Tag versions = 3.2.1...

CVE-2025-11949

creationtimestamp| type| source ---|---|--- 2025-10-21 08:13:43+00:00| seen| https://bsky.app/profile/basefortify.bsky.social/post/3m3ov5kg5as2q 2025-10-21 08:14:16+00:00| seen| https://bsky.app/profile/basefortify.bsky.social/post/3m3ov6jmz4k2q 2025-10-21 09:14:52+00:00| seen|...

CVE-2025-12001

creationtimestamp| type| source ---|---|--- 2025-10-21 00:08:58+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3o22swfw52i 2025-10-21 01:40:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3o76l7ysm2o...

WordPress Dynamically Display Posts plugin SQL Injection Vulnerability

WordPress Dynamically Display Posts plugin is a WordPress plugin for creating a store locator page in your website that displays information about nearby stores via Google Maps. WordPress Dynamically Display Posts plugin suffers from a SQL injection vulnerability that stems from a lack of...

CVE-2025-41028

creationtimestamp| type| source ---|---|--- 2025-10-20 10:34:57+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3mmlaqhmv2s 2025-10-20 11:35:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3mpxlghz52h...

CVE-2025-62577

creationtimestamp| type| source ---|---|--- 2025-10-20 06:05:41+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3m5jqtxig2i 2025-10-20 07:35:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3mck3l72d2o 2025-10-20 08:15:28+00:00| seen|...

CVE-2022-36903

creationtimestamp| type| source ---|---|--- 2025-10-19 15:39:07+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m3kb2yynzmw2 2025-10-19 16:20:18+00:00| seen| https://bsky.app/profile/potato.software/post/3m3kpfudtee2s...

CVE-2025-11926

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

EUVD-2025-34990

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...