https://wordpress.org/support/topic/plugin-results-count-xss-vulnerability-in-results-count/
[Plugin: Results count] XSS vulnerability in Results Count | WordPress.org
Aug 19, 2016 - [Plugin: Results count] XSS vulnerability in Results Count Resolved JeanPaulH (@djr) 15 years, 9 months ago I was informed by one of our visitors of a XSS...
xss vulnerabilitypluginresultscountwordpress
https://thehackernews.com/2024/10/hackers-exploit-roundcube-webmail-xss.html?m=1
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
Unknown hackers exploited a patched Roundcube XSS flaw in phishing attacks to steal sensitive credentials.
roundcube webmailxss vulnerabilityhackersexploitsteal
https://www.fortra.com/resources/vulnerabilities/goollery-viewpic-php-xss
Goollery PHP XSS Vulnerability and Fix | Beyond Security
Learn about this vulnerability related to gmail, and how to find and fix it with Beyond Security.
xss vulnerabilityphpfixbeyondsecurity
https://www.westerndigital.com/en-in/support/product-security/wdc-19017-my-cloud-filesdotmyclouddotcom-xss-vulnerability
WDC-19017 My Cloud - files.mycloud.com XSS Vulnerability | WD
The Western Digital and SanDisk SSD Dashboard applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources...
my cloudxss vulnerabilitywdcfilesmycloud
https://securelist.com/another-live-xss-vulnerability/29752/
Another live XSS vulnerability | Securelist
Another live XSS vulnerability in Orkut affected more than 180,000 users in Brazil.
another livexss vulnerabilitysecurelist
https://thehackernews.com/2011/03/xss-vulnerability-in-zapakgaming-portal.html
XSS Vulnerability in Zapak(gaming portal) by Milan Milo [ZHC]
XSS Vulnerability in Zapak(gaming portal) by Milan Milo [ZHC] | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect...
xss vulnerabilitygaming portalzapakmilanmilo
https://www.sandisk.com/support/product-security/wdc-21006-my-cloud-files-mycloud-com-xss-vulnerability
WDC-21006 My Cloud - files.mycloud.com XSS Vulnerability | Sandisk
High-performance SSDs, memory cards, and USB Flash Drives designed to prioritize speed, reliability, and energy efficiency for gamers, digital photography, and...
my cloudxss vulnerabilitywdcfilesmycloud
https://www.rocket.chat/blog/xss-vulnerability-hotfix-available-for-all-affected-versions
XSS vulnerability - hotfix available for all affected versions | Rocket.Chat
We are providing an important security hotfix for Rocket.Chat server outside of the regular release cycle.
xss vulnerabilityavailable forhotfixaffectedversions
https://thehackernews.com/2012/11/xss-vulnerability-in-apple-website.html?version=meter+at+null
XSS Vulnerability in Apple website
XSS Vulnerability in Apple website | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and...
xss vulnerabilityapple
https://www.openwall.com/lists/oss-security/2013/12/03/13
oss-security - [CVE-2013-6416] XSS Vulnerability in simple_format helper
xss vulnerabilityosssecuritycve2013
https://www.huawei.com/en/psirt/security-advisories/2021/huawei-sa-20211229-01-xss-en
Security Advisory - Cross-Site Scripting(XSS) Vulnerability in Huawei WS318n Product
cross site scriptingsecurity advisoryxss vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-67906/
CVE-2025-67906: MISP XSS Vulnerability in Workflows
CVE-2025-67906 is an XSS vulnerability in MISP workflow execution path. Learn about its impact, affected versions, and mitigation methods.
xss vulnerabilitycve2025mispworkflows
https://www.question2answer.org/qa/75637/xss-vulnerability-in-breadcrumps-plugin
XSS Vulnerability in Breadcrumps Plugin - Question2Answer Q&A
FYI : https://github.com/amiyasahu/q2a-breadcrumbs/issues/24
xss vulnerabilitypluginquestion2answer
https://www.veeam.com/kb4338
KB4338: XSS Vulnerability in Veeam Management Pack for Microsoft System Center v8
A reflected DOM-Based XSS vulnerability has been discovered in the Help directory of Veeam Management Pack for Microsoft System Center 8.0. This vulnerability...
microsoft system centerxss vulnerabilitymanagement pack
https://www.drupal.org/node/76748
DRUPAL-SA-2006-011 XSS Vulnerability in user module | Drupal.org
Mar 10, 2009 - Advisory ID: DRUPAL-SA-2006-011 Project: Drupal core Date: 2006-Aug-2 Security risk: less critical Impact: Drupal core Exploitable from: remote Vulnerability:...
xss vulnerabilitydrupalsa2006011
https://hashnode.com/posts/xss-vulnerability-a-quick-guide-for-entry-level-developers/649969d6cbe251db38982c20
Discussion on "XSS Vulnerability: A Quick Guide for Entry-Level Developers" | Hashnode
Discussion on "XSS Vulnerability: A Quick Guide for Entry-Level Developers". XSS aka Cross Site Scripting is one of the strong enemies of developers. It ruins...
a quick guidexss vulnerability
https://www.openwall.com/lists/oss-security/2015/06/16/17
oss-security - [CVE-2015-3226] XSS Vulnerability in ActiveSupport::JSON.encode
xss vulnerabilityosssecuritycve2015
https://thehackernews.com/2011/09/persistent-xss-vulnerability-in-ebuddy.html
Persistent XSS vulnerability in eBuddy Web Messenger
Persistent XSS vulnerability in eBuddy Web Messenger | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against...
persistent xssvulnerabilityebuddywebmessenger
https://www.itnews.com.au/news/wordpress-patches-critical-xss-vulnerability-403231
WordPress patches critical XSS vulnerability - iTnews
Commenters could cross-site script.
xss vulnerabilitywordpresspatchescriticalitnews
https://www.westerndigital.com/en-kw/support/product-security/wdc-19017-my-cloud-filesdotmyclouddotcom-xss-vulnerability
WDC-19017 My Cloud - files.mycloud.com XSS Vulnerability | WD
The Western Digital and SanDisk SSD Dashboard applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources...
my cloudxss vulnerabilitywdcfilesmycloud
https://thehackernews.com/2012/11/exploiting-google-persistent-xss.html
Exploiting Google persistent XSS vulnerability for phishing
Exploiting Google persistent XSS vulnerability for phishing | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect...
persistent xssexploitinggooglevulnerabilityphishing
https://www.truenas.com/community/threads/web-server-expect-header-xss-vulnerability.62822/
Web Server Expect Header XSS Vulnerability | TrueNAS Community
Had a vulnerability scan on our network recently and I am getting back this vulnerability. What is needed for this to get fixed? Build: FreeNAS-11.1-U4...
web serverxss vulnerabilityexpectheadertruenas
https://www.tripwire.com/state-of-security/yahoo-mail-patches-stored-xss-vulnerability-awards-researcher-10000
Yahoo! Mail Patches Stored XSS Vulnerability, Awards Researcher $10,000
Yahoo Mail! has patched a stored cross-site scripting (XSS) vulnerability and awarded a researcher $10,000 for finding the flaw.
yahoo mailstored xsspatchesvulnerabilityawards
https://www.westerndigital.com/en-ca/support/product-security/wdc-19017-my-cloud-filesdotmyclouddotcom-xss-vulnerability
WDC-19017 My Cloud - files.mycloud.com XSS Vulnerability | WD
The Western Digital and SanDisk SSD Dashboard applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources...
my cloudxss vulnerabilitywdcfilesmycloud
https://www.sentinelone.com/vulnerability-database/cve-2026-3673/
CVE-2026-3673: Frappe XSS Vulnerability via User Tags
CVE-2026-3673 is a stored XSS vulnerability in Frappe that allows authenticated attackers to execute JavaScript. Learn about its impact and mitigation.
xss vulnerabilitycve20263673frappe
https://thehackernews.com/2012/03/cross-site-scripting-xss-vulnerability.html
Cross-site scripting (XSS) Vulnerability reported on Paypal
Cross-site scripting (XSS) Vulnerability reported on Paypal | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect...
cross site scriptingxss vulnerabilityreportedpaypal
https://www.westerndigital.com/support/product-security/wdc-19017-my-cloud-filesdotmyclouddotcom-xss-vulnerability
WDC-19017 My Cloud - files.mycloud.com XSS Vulnerability | WD
The Western Digital and SanDisk SSD Dashboard applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources...
my cloudxss vulnerabilitywdcfilesmycloud
https://thehackernews.com/2011/09/iphone-skype-xss-vulnerability-lets.html
iPhone Skype XSS Vulnerability Lets Hackers Steal Phonebook [Video]
iPhone Skype XSS Vulnerability Lets Hackers Steal Phonebook [Video] | Read more hacking news on The Hacker News cybersecurity news website and learn how to...
xss vulnerabilityiphoneskypeletshackers
https://www.incibe.es/en/incibe-cert/notices/aviso/reflected-cross-site-scripting-xss-vulnerability-itium-6050
Reflected Cross-Site Scripting (XSS) vulnerability in ITIUM 6050 | INCIBE-CERT | INCIBE
INCIBE has coordinated the publication of a medium severity vulnerability affecting ITIUM 6050, a thin
cross site scriptingxss vulnerabilityreflected
https://www.watchguard.com/fr/wgrd-psirt/advisory/wgsa-2025-00011
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in IPS Configuration |...
Jul 10, 2025 - Updated September 17 2025: Updated to add Fireware OS 12.5.13 as a resolved release A stored cross-site scripting (XSS) vulnerability exists in the management...
cross site scriptingwatchguard fireboxxss vulnerabilitystored
https://metacpan.org/pod/HTML::XSSLint
HTML::XSSLint - audit XSS vulnerability of web pages - metacpan.org
audit XSS vulnerability of web pages
xss vulnerabilityweb pageshtmlauditmetacpan
https://snyk.io/de/blog/marked-xss-vulnerability/
Fixing `marked` XSS vulnerability | Snyk
May 16, 2016 - A recently published vulnerability in the npm `marked` package shows how attackers can use the flexibility of the Markdown format to introduce Cross-Site...
xss vulnerabilityfixingmarkedsnyk
https://thehackernews.com/2012/03/xss-vulnerability-discovered-on-paypal.html
XSS Vulnerability discovered on Paypal
XSS Vulnerability discovered on Paypal | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and...
xss vulnerabilitydiscoveredpaypal
https://snyk.io/blog/marked-xss-vulnerability/
Fixing `marked` XSS vulnerability | Snyk
May 16, 2016 - A recently published vulnerability in the npm `marked` package shows how attackers can use the flexibility of the Markdown format to introduce Cross-Site...
xss vulnerabilityfixingmarkedsnyk
https://www.westerndigital.com/en-za/support/product-security/wdc-19017-my-cloud-filesdotmyclouddotcom-xss-vulnerability
WDC-19017 My Cloud - files.mycloud.com XSS Vulnerability | WD
The Western Digital and SanDisk SSD Dashboard applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources...
my cloudxss vulnerabilitywdcfilesmycloud
https://www.huawei.com/en/psirt/security-advisories/2016/huawei-sa-20161130-01-espace-en
Security Advisory - XSS Vulnerability in Huawei eSpace IAD
security advisoryxss vulnerabilityhuaweiespaceiad
https://tuta.com/ja/blog/user-reported-security-fix
Fixed potential hard-to-execute XSS vulnerability in Tutanota. | Tuta
A user-reported XSS vulnerability has now been fixed.
xss vulnerabilityfixedpotentialhardexecute
https://www.inmotionhosting.com/support/edu/wordpress/wp-xss-plugin-vulnerability/
WordPress Plugin XSS Vulnerability | InMotion Hosting
Oct 13, 2020 - We are urging all WordPress users to update their plugins to address a XSS vulnerability.
wordpress pluginxss vulnerabilityinmotionhosting
https://www.sentinelone.com/vulnerability-database/cve-2025-23459/
CVE-2025-23459: NS Simple Intro Loader XSS Vulnerability
CVE-2025-23459 is a reflected XSS vulnerability in NS Simple Intro Loader plugin. Learn about its impact, affected versions, and mitigation methods.
cve2025nssimpleintro
https://www.sentinelone.com/vulnerability-database/cve-2025-32586/
CVE-2025-32586: ABA PayWay WooCommerce XSS Vulnerability
CVE-2025-32586 is a reflected XSS vulnerability in ABA PayWay Payment Gateway for WooCommerce. Learn about its impact, affected versions, and mitigation...
cve2025abapaywaywoocommerce
https://www.sentinelone.com/vulnerability-database/cve-2026-4142/
CVE-2026-4142: WordPress Sentence To SEO XSS Vulnerability
CVE-2026-4142 is a stored XSS vulnerability in WordPress Sentence To SEO plugin. Learn about its impact, affected versions, and mitigation methods.
cve20264142wordpresssentence
https://www.sentinelone.com/vulnerability-database/cve-2025-25102/
CVE-2025-25102: Yahoo BOSS Reflected XSS Vulnerability
CVE-2025-25102 is a reflected XSS vulnerability in Yahoo BOSS plugin. Learn about its impact, affected versions, and mitigation methods.
yahoo bossreflected xsscve2025vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-23585/
CVE-2025-23585: Goo.gl URL Shorter XSS Vulnerability
CVE-2025-23585 is a reflected XSS vulnerability in Goo.gl URL Shorter plugin. Learn about its impact, affected versions, and mitigation methods.
goo glcve2025urlshorter
https://www.sentinelone.com/vulnerability-database/cve-2026-6150/
CVE-2026-6150: Simple Laundry System XSS Vulnerability
CVE-2026-6150 is a cross-site scripting vulnerability in Simple Laundry System 1.0. Learn about its impact, affected versions, and mitigation methods.
simple laundrycve20266150system
https://www.sentinelone.com/vulnerability-database/cve-2025-12430/
CVE-2025-12430: Google Chrome XSS Vulnerability
CVE-2025-12430 is an XSS vulnerability in Google Chrome. Learn about its impact, affected versions, and mitigation methods to protect your browser.
google chromecve202512430xss
https://www.sentinelone.com/vulnerability-database/cve-2025-30349/
CVE-2025-30349: Horde IMP XSS Vulnerability
CVE-2025-30349 is an XSS vulnerability in Horde IMP webmail. Learn about its impact, affected versions, and mitigation methods for this exploit.
horde impcve202530349xss
https://www.sentinelone.com/vulnerability-database/cve-2025-22776/
CVE-2025-22776: WP Bulletin Board XSS Vulnerability
CVE-2025-22776 is a reflected XSS vulnerability in WP Bulletin Board plugin. Learn about its impact, affected versions, and mitigation methods.
bulletin boardcve2025wpxss
https://www.sentinelone.com/vulnerability-database/cve-2025-23603/
CVE-2025-23603: Group Category Creator XSS Vulnerability
CVE-2025-23603 is a reflected XSS vulnerability in Group Category Creator plugin. Learn about its impact, affected versions, and mitigation methods.
group categorycve2025creatorxss
https://www.sentinelone.com/vulnerability-database/cve-2025-32528/
CVE-2025-32528: iCal Feeds Plugin XSS Vulnerability
CVE-2025-32528 is a reflected XSS vulnerability in iCal Feeds plugin. Learn about its impact, affected versions, and mitigation methods.
ical feedscve2025pluginxss
https://www.sentinelone.com/vulnerability-database/cve-2025-46234/
CVE-2025-46234: Control Listings Plugin XSS Vulnerability
CVE-2025-46234 is a reflected XSS vulnerability in Control Listings WordPress plugin. Learn about its impact, affected versions, and mitigation methods.
cve202546234controllistings
https://www.sentinelone.com/vulnerability-database/cve-2025-31901/
CVE-2025-31901: Digihood HTML Sitemap XSS Vulnerability
CVE-2025-31901 is a reflected XSS vulnerability in Digihood HTML Sitemap plugin. Learn about its impact, affected versions, and mitigation methods.
html sitemapcve2025xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2026-40451/
CVE-2026-40451: DeepL Chrome Extension XSS Vulnerability
CVE-2026-40451 is a cross-site scripting vulnerability in DeepL Chrome extension. Learn about its impact, affected versions, and mitigation methods.
deepl chrome extensioncve2026xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-49054/
CVE-2025-49054: Time Sheets Plugin XSS Vulnerability
CVE-2025-49054 is a reflected XSS vulnerability in Time Sheets plugin. Learn about its impact, affected versions, and mitigation methods.
time sheetscve2025pluginxss
https://www.sentinelone.com/vulnerability-database/cve-2026-6218/
CVE-2026-6218: ytDownloader XSS Vulnerability
CVE-2026-6218 is a cross-site scripting vulnerability in ytDownloader up to 3.20.2. Learn about its impact, affected versions, and mitigation methods.
cve20266218xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-23487/
CVE-2025-23487: Easy Gallery Plugin XSS Vulnerability
CVE-2025-23487 is a reflected XSS vulnerability in Easy Gallery plugin version 1.4 and earlier. Learn about its impact, affected versions, and mitigation...
gallery plugincve2025easyxss
https://www.sentinelone.com/vulnerability-database/cve-2025-22341/
CVE-2025-22341: Hide Login+ Reflected XSS Vulnerability
CVE-2025-22341 is a reflected XSS vulnerability in Hide Login+ plugin. Learn about its impact, affected versions, and mitigation methods.
hide loginreflected xsscve2025vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-70365/
CVE-2025-70365: Kiamo Stored XSS Vulnerability
CVE-2025-70365 is a stored cross-site scripting vulnerability in Kiamo before 8.4. Learn about its impact, affected versions, and mitigation methods.
stored xsscve2025vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-1294/
CVE-2025-1294: eForm WordPress Plugin XSS Vulnerability
CVE-2025-1294 is a stored cross-site scripting vulnerability in eForm WordPress Form Builder. Learn about its impact, affected versions, and mitigation methods.
wordpress plugincve20251294eform
https://www.sentinelone.com/vulnerability-database/cve-2025-48107/
CVE-2025-48107: Uncode WordPress Theme XSS Vulnerability
CVE-2025-48107 is a reflected XSS vulnerability in Uncode WordPress theme. Learn about its impact, affected versions, and mitigation methods.
wordpress themecve2025uncodexss
https://www.sentinelone.com/vulnerability-database/cve-2025-22332/
CVE-2025-22332: CloudFlare Cache Purge XSS Vulnerability
CVE-2025-22332 is a reflected XSS vulnerability in CloudFlare Cache Purge plugin. Learn about its impact, affected versions, and mitigation methods.
cve202522332cloudflarecache
https://www.sentinelone.com/vulnerability-database/cve-2025-30955/
CVE-2025-30955: ListingEasy Reflected XSS Vulnerability
CVE-2025-30955 is a reflected XSS vulnerability in ListingEasy WordPress theme. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2026-39840/
CVE-2026-39840: MediaWiki Cargo Extension XSS Vulnerability
CVE-2026-39840 is a cross-site scripting vulnerability in MediaWiki Cargo Extension. Learn about its impact, affected versions, and mitigation methods.
cve2026mediawikicargoextension
https://www.sentinelone.com/vulnerability-database/cve-2025-23835/
CVE-2025-23835: Legal Plus Reflected XSS Vulnerability
CVE-2025-23835 is a reflected XSS vulnerability in Legal Plus plugin. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025legalplus
https://www.sentinelone.com/vulnerability-database/cve-2025-23687/
CVE-2025-23687: Woo Store Mode XSS Vulnerability
CVE-2025-23687 is a reflected XSS vulnerability in Woo Store Mode plugin. Learn about its impact, affected versions, and mitigation methods.
cve2025woostoremode
https://www.sentinelone.com/vulnerability-database/cve-2025-22631/
CVE-2025-22631: Marketing Automation XSS Vulnerability
CVE-2025-22631 is a reflected XSS vulnerability in Marketing Automation plugin. Learn about its impact, affected versions, and mitigation methods.
marketing automationcve2025xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-26997/
CVE-2025-26997: Wireless Butler Reflected XSS Vulnerability
CVE-2025-26997 is a reflected XSS vulnerability in Wireless Butler versions up to 1.0.11. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025wirelessbutler
https://www.sentinelone.com/vulnerability-database/cve-2024-7785/
CVE-2024-7785: Electronic Ticket System XSS Vulnerability
CVE-2024-7785 is a reflected XSS vulnerability in Electronic Ticket System. Learn about its impact, affected versions, and mitigation methods.
electronic ticketcve20247785system
https://www.sentinelone.com/vulnerability-database/cve-2026-34624/
CVE-2026-34624: Adobe Experience Manager XSS Vulnerability
CVE-2026-34624 is a DOM-based XSS vulnerability in Adobe Experience Manager. Learn about its impact, affected versions, and mitigation methods.
adobe experience managercve2026xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2026-3659/
CVE-2026-3659: WP Circliful Plugin XSS Vulnerability
CVE-2026-3659 is a stored cross-site scripting vulnerability in WP Circliful plugin for WordPress. Learn about its impact, affected versions, and mitigation.
cve20263659wpplugin
https://www.sentinelone.com/vulnerability-database/cve-2026-21663/
CVE-2026-21663: Revive Adserver XSS Vulnerability
CVE-2026-21663 is a reflected XSS vulnerability in Revive Adserver. Learn about its impact, affected versions, and mitigation methods.
revive adservercve202621663xss
https://www.sentinelone.com/vulnerability-database/cve-2025-25089/
CVE-2025-25089: Image Rotator Plugin XSS Vulnerability
CVE-2025-25089 is a reflected XSS vulnerability in appten Image Rotator plugin. Learn about its impact, affected versions, and mitigation methods.
image rotatorcve2025pluginxss
https://www.sentinelone.com/vulnerability-database/cve-2025-31384/
CVE-2025-31384: Aviplugins Videos XSS Vulnerability
CVE-2025-31384 is a reflected XSS vulnerability in Aviplugins Videos plugin. Learn about its impact, affected versions, and mitigation methods.
cve202531384videosxss
https://www.sentinelone.com/vulnerability-database/cve-2025-22313/
CVE-2025-22313: Widgetize Pages Light XSS Vulnerability
CVE-2025-22313 is a reflected XSS vulnerability in Widgetize Pages Light plugin. Learn about its impact, affected versions, and mitigation methods.
cve202522313pageslight
https://www.sentinelone.com/vulnerability-database/cve-2025-24609/
CVE-2025-24609: PORTONE WooCommerce XSS Vulnerability
CVE-2025-24609 is a reflected XSS vulnerability in PORTONE WooCommerce payment plugin. Learn about its impact, affected versions, and mitigation methods.
cve2025woocommercexssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2026-1845/
CVE-2026-1845: Real Estate Pro WordPress XSS Vulnerability
CVE-2026-1845 is a stored XSS vulnerability in Real Estate Pro plugin for WordPress. Learn about its impact, affected versions, and mitigation methods.
real estate procve20261845wordpress
https://www.sentinelone.com/vulnerability-database/cve-2025-22751/
CVE-2025-22751: Partners Plugin Reflected XSS Vulnerability
CVE-2025-22751 is a reflected XSS vulnerability in the Partners plugin by farinspace. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025partnersplugin
https://www.sentinelone.com/vulnerability-database/cve-2025-65134/
CVE-2025-65134: School Management System XSS Vulnerability
CVE-2025-65134 is a reflected XSS vulnerability in School Management System 1.0. Learn about its impact, affected versions, and mitigation methods.
school management systemcve2025xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2026-26027/
CVE-2026-26027: GLPI Asset Management XSS Vulnerability
CVE-2026-26027 is a stored XSS vulnerability in GLPI asset management software. Learn about its impact, affected versions, and mitigation methods.
asset managementcve202626027glpi
https://www.sentinelone.com/vulnerability-database/cve-2025-24621/
CVE-2025-24621: Arconix Shortcodes XSS Vulnerability
CVE-2025-24621 is a reflected XSS vulnerability in Arconix Shortcodes plugin. Learn about its impact, affected versions, and mitigation methods.
cve2025shortcodesxssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-22331/
CVE-2025-22331: Cf7Save Extension XSS Vulnerability
CVE-2025-22331 is a reflected XSS vulnerability in Cf7Save Extension plugin. Learn about its impact, affected versions, and mitigation methods.
cve202522331extensionxss
https://www.sentinelone.com/vulnerability-database/cve-2025-52774/
CVE-2025-52774: Infility Global Reflected XSS Vulnerability
CVE-2025-52774 is a reflected XSS vulnerability in Infility Global plugin. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025infilityglobal
https://www.sentinelone.com/vulnerability-database/cve-2025-25099/
CVE-2025-25099: Appointment Buddy Widget XSS Vulnerability
CVE-2025-25099 is a cross-site scripting vulnerability in Appointment Buddy Widget. Learn about its impact, affected versions, and mitigation methods.
cve2025appointmentbuddywidget
https://www.sentinelone.com/vulnerability-database/cve-2026-39333/
CVE-2026-39333: ChurchCRM Reflected XSS Vulnerability
CVE-2026-39333 is a reflected XSS vulnerability in ChurchCRM. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2026vulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-64198/
CVE-2025-64198: Easy Social Share Buttons XSS Vulnerability
CVE-2025-64198 is a reflected XSS vulnerability in Easy Social Share Buttons plugin. Learn about its impact, affected versions, and mitigation methods.
social share buttonscve2025easyxss
https://www.sentinelone.com/vulnerability-database/cve-2025-26879/
CVE-2025-26879: s2Member Plugin Reflected XSS Vulnerability
CVE-2025-26879 is a reflected XSS vulnerability in the s2Member WordPress plugin. Learn about its impact, affected versions, and mitigation methods.
reflected xsscve2025pluginvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-53223/
CVE-2025-53223: Theme Switcher Reloaded XSS Vulnerability
CVE-2025-53223 is a reflected XSS vulnerability in Theme Switcher Reloaded plugin. Learn about its impact, affected versions, and mitigation methods.
theme switchercve202553223reloaded
https://www.sentinelone.com/vulnerability-database/cve-2025-23465/
CVE-2025-23465: Vampire Character Manager XSS Vulnerability
CVE-2025-23465 is a reflected XSS vulnerability in Vampire Character Manager. Learn about its impact, affected versions, and mitigation methods.
cve2025vampirecharactermanager
https://www.sentinelone.com/vulnerability-database/cve-2025-23555/
CVE-2025-23555: Ui Slider Filter By Price XSS Vulnerability
CVE-2025-23555 is a reflected XSS vulnerability in Ui Slider Filter By Price plugin. Learn about its impact, affected versions, and mitigation methods.
filter by pricecve2025uislider
https://www.sentinelone.com/vulnerability-database/cve-2025-28917/
CVE-2025-28917: Custom Smilies Plugin XSS Vulnerability
CVE-2025-28917 is a stored XSS vulnerability in Custom Smilies plugin versions up to 2.9.2. Learn about its impact, affected versions, and mitigation methods.
cve2025customsmiliesplugin
https://www.sentinelone.com/vulnerability-database/cve-2026-40262/
CVE-2026-40262: Note Mark XSS Vulnerability
CVE-2026-40262 is a cross-site scripting vulnerability in Note Mark. Learn about its impact, affected versions, and mitigation methods.
cve2026notemarkxss
https://www.sentinelone.com/vulnerability-database/cve-2025-31061/
CVE-2025-31061: Wishlist Plugin XSS Vulnerability
CVE-2025-31061 is a reflected XSS vulnerability in Wishlist plugin versions up to 2.1.0. Learn about its impact, affected versions, and mitigation methods.
cve202531061wishlistplugin
https://www.sentinelone.com/vulnerability-database/cve-2026-35539/
CVE-2026-35539: Roundcube Webmail XSS Vulnerability
CVE-2026-35539 is an XSS vulnerability in Roundcube Webmail. Learn about its impact, affected versions, and mitigation methods.
roundcube webmailcve2026xssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-62074/
CVE-2025-62074: WPMobile.App wpappninja XSS Vulnerability
CVE-2025-62074 is a cross-site scripting vulnerability in WPMobile.App wpappninja. Learn about its impact, affected versions, and mitigation methods.
cve2025appxssvulnerability
https://www.sentinelone.com/vulnerability-database/cve-2025-31454/
CVE-2025-31454: Delete Post Revision XSS Vulnerability
CVE-2025-31454 is a reflected XSS vulnerability in Delete Post Revision plugin. Learn about its impact, affected versions, and mitigation methods.
cve2025deletepostrevision