CVE-2025-9798

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Netcad Software Inc. Netigma allows Stored XSS. This issue affects Netigma: from 6.3.3 before 6.3.5 V8...

CVE-2025-58626

CVE-2025-58626 corresponds to a stored XSS vulnerability in the WordPress plugin RumbleTalk Live Group Chat (HTML5) affecting versions up to and including 6.3.5 . The issue stems from improper input neutralization during web page generation, enabling stored cross-site scripting and impacting site...

[SECURITY] Fedora 42 Update: plasma-integration-6.3.5-3.fc42

Qt Platform Theme integration plugin for Plasma...

WordPress WPBot plugin <= 6.3.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin ChatBot versions = 6.3.5...

PT-2024-31626 · Unknown · Advanced Custom Fields Pro

Name of the Vulnerable Software and Affected Versions: Advanced Custom Fields versions 6.3.5 and earlier Advanced Custom Fields Pro versions 6.3.5 and earlier Description: A cross-site scripting issue exists, allowing an attacker with the capability setting privilege to store an arbitrary script ...

WordPress quiz-master-next cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. quiz-master-next is a survey plugin used in it. A cross-site scripting vulnerability exists in WordPress quiz-master-next versions pri...