exploitDog

CVE-2025-57973

Опубликовано: 22 сент. 2025

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chad Butler WP-Members allows Stored XSS. This issue affects WP-Members: from n/a through 3.5.4.2.

Ссылки

https://patchstack.com/database/wordpress/plugin/wp-members/vulnerability/wordpress-wp-members-plugin-3-5-4-2-cross-site-scripting-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 20%

0.00064

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-g6cm-pp4h-p8mg

CVSS3: 5.5

github

5 месяцев назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chad Butler WP-Members allows Stored XSS. This issue affects WP-Members: from n/a through 3.5.4.2.

EPSS

Процентиль: 20%

0.00064

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-79