CVE-2025-4586
- EPSS 0.04%
- Veröffentlicht 13.06.2025 01:47:49
- Zuletzt bearbeitet 03.07.2025 17:39:43
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmcalendarview' shortcode in all versions up to, and including, 1.2.17 due to insufficient input sanitization and output escaping on user supplied a...
CVE-2025-4584
- EPSS 0.04%
- Veröffentlicht 13.06.2025 01:47:46
- Zuletzt bearbeitet 03.07.2025 17:38:28
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmeventlist' shortcode in all versions up to, and including, 1.2.17 due to insufficient input sanitization and output escaping on user supplied attr...
CVE-2025-4585
- EPSS 0.04%
- Veröffentlicht 13.06.2025 01:47:45
- Zuletzt bearbeitet 03.07.2025 17:49:34
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmflat' shortcode in all versions up to, and including, 1.2.17 due to insufficient input sanitization and output escaping on user supplied attribute...