2 matches found
CVE-2025-22513
CVE-2025-22513 — WordPress Simple Locator (
CVE-2024-12501
CVE-2024-12501 concerns the WordPress Simple Locator plugin (versions up to 2.0.3) with Stored XSS via shortcode attributes due to insufficient input sanitization and output escaping. Exploitation requires authenticated access at contributor level or higher; an attacker can inject scripts that ex...