CVE-2025-4586
- EPSS 0.12%
- Veröffentlicht 13.06.2025 01:47:49
- Zuletzt bearbeitet 08.04.2026 19:24:10
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmcalendarview' shortcode in all versions up to, and including, 1.2.19 due to insufficient input sanitization and output escaping on user supplied a...
CVE-2025-4584
- EPSS 0.12%
- Veröffentlicht 13.06.2025 01:47:46
- Zuletzt bearbeitet 08.04.2026 18:24:48
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmeventlist' shortcode in all versions up to, and including, 1.2.19 due to insufficient input sanitization and output escaping on user supplied attr...
CVE-2025-4585
- EPSS 0.12%
- Veröffentlicht 13.06.2025 01:47:45
- Zuletzt bearbeitet 08.04.2026 17:20:45
The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmflat' shortcode in all versions up to, and including, 1.2.19 due to insufficient input sanitization and output escaping on user supplied attribute...