Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 100plugins Open User Map allows DOM-Based XSS. This issue affects Open User Map: from n/a through 1.4.14.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| 100plugins |
|
| Wordpress |
|
No data.
No data.
References
History
Wed, 24 Sep 2025 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 23 Sep 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
100plugins
100plugins open User Map Wordpress Wordpress wordpress |
|
| Vendors & Products |
100plugins
100plugins open User Map Wordpress Wordpress wordpress |
Mon, 22 Sep 2025 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 100plugins Open User Map allows DOM-Based XSS. This issue affects Open User Map: from n/a through 1.4.14. | |
| Title | WordPress Open User Map Plugin <= 1.4.14 - Cross Site Scripting (XSS) Vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2025-09-22T18:24:49.806Z
Updated: 2025-09-24T13:49:09.273Z
Reserved: 2025-08-22T11:36:40.761Z
Link: CVE-2025-57953
Vulnrichment
Updated: 2025-09-24T13:49:06.379Z
NVD
Status : Awaiting Analysis
Published: 2025-09-22T19:15:53.763
Modified: 2025-09-22T21:22:33.590
Link: CVE-2025-57953
Redhat
No data.