6 matches found
EUVD-2025-22399
Malicious code in bioql PyPI...
CVE-2025-5753 Valuation Calculator <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via link Parameter
The Valuation Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2025-5753 Valuation Calculator <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via link Parameter
The Valuation Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2025-5753
CVE-2025-5753 : The WordPress plug‑in “Valuation Calculator” (Commercial Real Estate Valuation Calculator) is vulnerable to Stored Cross‑Site Scripting via the “link” parameter in all versions up to and including 1.3.2. An authenticated attacker with Contributor‑level access can inject scripts th...
PT-2025-30510 · WordPress · Valuation Calculator
Name of the Vulnerable Software and Affected Versions: Valuation Calculator plugin for WordPress versions up to and including 1.3.2 Description: The Valuation Calculator plugin for WordPress is susceptible to Stored Cross-Site Scripting through the link parameter due to insufficient input...
WordPress plugin Valuation Calculator 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...