CVE-2025-14069
- EPSS 0.24%
- Veröffentlicht 23.01.2026 05:29:51
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'saswp_custom_schema_field' profile field in all versions up to, and including, 1.54 due to insufficient input sanitization and output...
CVE-2025-11502
- EPSS 0.19%
- Veröffentlicht 01.11.2025 05:40:24
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'saswp_tiny_multiple_faq' shortcode in all versions up to, and including, 1.51 due to insufficient input sanitization and out...
CVE-2024-3491
- EPSS 0.33%
- Veröffentlicht 23.04.2024 11:15:45
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's "How To" and "FAQ" Blocks in all versions up to, and including, 1.29 due to insufficient input sanitization and output escapi...
CVE-2024-1288
- EPSS 0.43%
- Veröffentlicht 29.02.2024 01:43:46
- Zuletzt bearbeitet 08.04.2026 19:20:36
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saswp_reviews_form_render' function in all versions up to, and including, 1.26. This makes it ...