4 matches found
CVE-2025-31375 WordPress Scheduled plugin <= 1.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in bhoogterp Scheduled scheduled allows Stored XSS.This issue affects Scheduled: from n/a through = 1.0...
CVE-2025-31375
CVE-2025-31375 is a CSRF to Stored XSS in the WordPress plugin Scheduled, affecting versions up to 1.0. The Initial document states vulnerability in Scheduled: from n/a through 1.0. The Connected documents do not provide concrete exploit, patch, or vendor/version specifics beyond this, so no reme...
WordPress Scheduled Notification Bar Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Scheduled Notification Bar Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 18a062a468b5 Credits Rafie Muhammad Patchsta...
WordPress Scheduled Announcements Widget Plugin < 1.0 is vulnerable to Cross Site Scripting (XSS)
Software Scheduled Announcements Widget Type Plugin Vulnerable versions 1.0 Fixed in 1.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0363 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 6f6b4c3427c3 Credits Lana Code...