exploitDog

CVE-2025-67930

Опубликовано: 08 янв. 2026

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vernon Systems Limited eHive Search ehive-search allows Reflected XSS.This issue affects eHive Search: from n/a through <= 2.5.0.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/ehive-search/vulnerability/wordpress-ehive-search-plugin-2-5-0-cross-site-scripting-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 9%

0.00031

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-3mr8-75r8-g586

CVSS3: 6.1

github

около 1 месяца назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vernon Systems Limited eHive Search ehive-search allows Reflected XSS.This issue affects eHive Search: from n/a through <= 2.5.0.

EPSS

Процентиль: 9%

0.00031

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79