Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/04 4:6 a.m.25 views

CVE-2025-3748

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pnchainmenu shortcode in all versions up to, and including, 1.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.9AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 a.m.6 views

CVE-2025-3748

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pnchainmenu shortcode in all versions up to, and including, 1.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

5.4CVSS6AI score0.00231EPSS
Exploits0References4
NVD
NVD
added 2025/05/02 4:15 a.m.24 views

CVE-2025-3748

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pnchainmenu shortcode in all versions up to, and including, 1.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00231EPSS
Exploits0References4
CVE
CVE
added 2025/05/02 3:21 a.m.63 views

CVE-2025-3748

The CVE-2025-3748 entry concerns the WordPress plugin Taxonomy Chain Menu (Taxonomy Chain Menu) with a Stored Cross-Site Scripting (XSS) vulnerability. Affected versions are up to and including 1.0.8, where insufficient input sanitization and output escaping on user-supplied attributes in the pn_...

6.4CVSS5.7AI score0.00231EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/02 3:21 a.m.8 views

CVE-2025-3748 Taxonomy Chain Menu <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via pn_chain_menu Shortcode

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pnchainmenu shortcode in all versions up to, and including, 1.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00231EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/02 3:21 a.m.16 views

CVE-2025-3748 Taxonomy Chain Menu <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via pn_chain_menu Shortcode

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pnchainmenu shortcode in all versions up to, and including, 1.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00231EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/02 12:0 a.m.8 views

WordPress plugin Taxonomy Chain Menu 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability exis...

6.4CVSS6.6AI score0.00231EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.6 views

PT-2025-18758 · WordPress · Taxonomy Chain Menu

Name of the Vulnerable Software and Affected Versions: Taxonomy Chain Menu plugin for WordPress versions up to, and including, 1.0.8 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied attributes in the pn...

6.4CVSS6.2AI score0.00231EPSS
Exploits0References10
Patchstack
Patchstack
added 2025/05/01 10:5 p.m.8 views

WordPress Taxonomy Chain Menu plugin <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via pn_chain_menu Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via pnchainmenu Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin Taxonomy Chain Menu versions = 1.0.8...

6.4CVSS6.8AI score0.00231EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder