Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatik Estatik estatik allows DOM-Based XSS.This issue affects Estatik: from n/a through <= 4.1.13.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Estatik |
|
| Wordpress |
|
No data.
No data.
References
History
Mon, 27 Oct 2025 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Estatik
Estatik estatik Wordpress Wordpress wordpress |
|
| Vendors & Products |
Estatik
Estatik estatik Wordpress Wordpress wordpress |
Mon, 27 Oct 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Mon, 27 Oct 2025 02:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatik Estatik estatik allows DOM-Based XSS.This issue affects Estatik: from n/a through <= 4.1.13. | |
| Title | WordPress Estatik plugin <= 4.1.13 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2025-10-27T01:34:12.534Z
Updated: 2025-10-27T15:16:03.392Z
Reserved: 2025-10-24T14:25:01.199Z
Link: CVE-2025-62963
Vulnrichment
Updated: 2025-10-27T15:15:39.004Z
NVD
Status : Awaiting Analysis
Published: 2025-10-27T02:15:56.550
Modified: 2025-10-27T16:15:46.860
Link: CVE-2025-62963
Redhat
No data.