WordPress Sticky Header On Scroll plugin <= 1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Sticky Header On Scroll versions = 1.0...

CVE-2025-27356 WordPress Sticky Header On Scroll plugin <= 1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Hardik Sticky Header On Scroll sticky-header-on-scroll allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sticky Header On Scroll: from n/a through = 1.0...

CVE-2025-27356 WordPress Sticky Header On Scroll plugin <= 1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Hardik Sticky Header On Scroll sticky-header-on-scroll allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sticky Header On Scroll: from n/a through = 1.0...

CVE-2025-23651

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in adamskaat Scroll Top scroll-to-top-builder allows Reflected XSS.This issue affects Scroll Top: from n/a through = 1.3.3...

CVE-2025-23651

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in adamskaat Scroll Top scroll-to-top-builder allows Reflected XSS.This issue affects Scroll Top: from n/a through = 1.3.3...

CVE-2025-23651

CVE-2025-23651 is a Reflected Cross-Site Scripting vulnerability in the WordPress Scroll Top plugin (NotFound Scroll Top) affecting versions up to 1.3.3. The issue stems from improper input neutralization during web page generation, enabling XSS in reflected context. Public references in multiple...

CVE-2025-23651 WordPress Scroll Top plugin <= 1.3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound Scroll Top allows Reflected XSS. This issue affects Scroll Top: from n/a through 1.3.3...

CVE-2025-23651 WordPress Scroll Top plugin <= 1.3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in adamskaat Scroll Top scroll-to-top-builder allows Reflected XSS.This issue affects Scroll Top: from n/a through = 1.3.3...

WordPress plugin Scroll Top 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-6995 · Unknown · Notfound Scroll Top

Name of the Vulnerable Software and Affected Versions: NotFound Scroll Top versions 1.3.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS in NotFound Scroll Top. Recommendation...

CVE-2025-23990

Cross-Site Request Forgery CSRF vulnerability in jablonczay Scroll Styler scroll-styler.This issue affects Scroll Styler: from n/a through = 1.1...

CVE-2024-51647

Cross-Site Request Forgery CSRF vulnerability in Chaser324 Featured Posts Scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through 1.25...

CVE-2025-23990

Cross-Site Request Forgery CSRF vulnerability in jablonczay Scroll Styler scroll-styler.This issue affects Scroll Styler: from n/a through = 1.1...

CVE-2025-23990 WordPress Scroll Styler plugin <= 1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in jablonczay Scroll Styler scroll-styler.This issue affects Scroll Styler: from n/a through = 1.1...

CVE-2025-23990

CVE-2025-23990 : A CSRF to Stored XSS vulnerability affects the WordPress plugin Scroll Styler (versions up to and including 1.1). The connected documents identify the root cause as Cross-Site Request Forgery that can lead to stored cross-site scripting, with the affected software explicitly list...

CVE-2025-23990 WordPress Scroll Styler plugin <= 1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in jablonczay Scroll Styler scroll-styler.This issue affects Scroll Styler: from n/a through = 1.1...

PT-2025-5249 · Unknown · Jablonczay Scroll Styler

Name of the Vulnerable Software and Affected Versions: jablonczay Scroll Styler versions 1.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...

WordPress plugin Scroll Styler 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

WordPress Scroll Styler plugin <= 1.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Scroll Styler versions = 1.1...

CVE-2025-23444

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nasir179125 Scroll Top Advanced scroll-top-advanced allows Stored XSS.This issue affects Scroll Top Advanced: from n/a through = 2.5...