Permalink
CVE-2025-49053
5.9 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): REQUIRED
- Scope (S): CHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): LOW
- Availability impact (A): LOW
WordPress WP Airdrop Manager plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kadesthemes WP Airdrop Manager allows Stored XSS. This issue affects WP Airdrop Manager: from n/a through 1.0.5.
References
Affected products
airdrop
- =<1.0.5
Matching in nixpkgs
pkgs.airdrop-cli
Use Airdrop from the CLI on macOS written in Swift
-
nixos-unstable -
- nixpkgs-unstable 0-unstable-2024-04-13
pkgs.nodePackages.hs-airdrop
Handshake airdrop redemption
-
nixos-unstable -
- nixpkgs-unstable 0.10.0
pkgs.nodePackages_latest.hs-airdrop
Handshake airdrop redemption
-
nixos-unstable -
- nixpkgs-unstable 0.10.0
Package maintainers
-
@Enzime Michael Hoang
-
@diogotcorreia Diogo Correia <me@diogotc.com>
-
@dit7ya Mostly Void <7rat13@gmail.com>