4 matches found
CVE-2025-49244
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vova Shortcodes Ultimate shortcodes-ultimate allows Stored XSS.This issue affects Shortcodes Ultimate: from n/a through = 7.3.5...
CVE-2025-49244
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vova Shortcodes Ultimate shortcodes-ultimate allows Stored XSS.This issue affects Shortcodes Ultimate: from n/a through = 7.3.5...
CVE-2025-49244
CVE-2025-49244 – Stored Cross-Site Scripting in WP Shortcodes Ultimate (Shortcodes Ultimate) affecting versions up to 7.3.5. Root cause: improper input neutralization during web page generation. Documented impact: low to low in confidentiality, integrity, and availability impacts per CVSS 3.1 vec...
PT-2025-24207 · Unknown · Vova Shortcodes Ultimate
Name of the Vulnerable Software and Affected Versions: Vova Shortcodes Ultimate versions 7.3.5 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This means that an attacker can inject...