Simple Spoiler Security Vulnerabilities and Issues — Simple Spoiler CVE List

Lucene search

WeblibertySimple Spoiler

3 matches found

CVE•added 2025/04/09 5:15 p.m.•42 views

CVE-2025-31020

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webliberty Simple Spoiler allows Stored XSS. This issue affects Simple Spoiler: from n/a through 1.4.

6.5CVSS6.4AI score0.00045EPSS

CVE•added 2024/06/03 9:15 a.m.•32 views

CVE-2024-35639

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webliberty Simple Spoiler allows Stored XSS.This issue affects Simple Spoiler: from n/a through 1.2.

5.9CVSS6AI score0.00078EPSS

CVE•added 2024/09/14 4:15 a.m.•30 views

CVE-2024-8479

The The Simple Spoiler plugin for WordPress is vulnerable to arbitrary shortcode execution in versions 1.2 to 1.3. This is due to the plugin adding the filter add_filter('comment_text', 'do_shortcode'); which will run all shortcodes in comments. This makes it possible for unauthenticated attackers ...

7.3CVSS7.6AI score0.01866EPSS