4 matches found
CVE-2025-48305
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vikingjs Goal Tracker for Patreon goal-tracker-for-patreon allows Stored XSS.This issue affects Goal Tracker for Patreon: from n/a through = 0.4.6...
CVE-2025-48305
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vikingjs Goal Tracker for Patreon goal-tracker-for-patreon allows Stored XSS.This issue affects Goal Tracker for Patreon: from n/a through = 0.4.6...
CVE-2025-48305
CVE-2025-48305 affects the WordPress plugin Goal Tracker for Patreon (versions up to 0.4.6) with a stored XSS due to improper input neutralization during web page generation. Connected sources corroborate the vulnerability type (Stored XSS) and affected version range, and Patchstack/PTSecurity gu...
PT-2025-34994
Name of the Vulnerable Software and Affected Versions: vikingjs Goal Tracker for Patreon versions through 0.4.6 Description: The application suffers from a Stored Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. This allows for the injection of...