Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tapfiliate Tapfiliate allows Stored XSS. This issue affects Tapfiliate: from n/a through 3.2.2.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Tapfiliate |
|
| Wordpress |
|
No data.
No data.
References
History
Tue, 23 Sep 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Tapfiliate
Tapfiliate tapfiliate Wordpress Wordpress wordpress |
|
| Vendors & Products |
Tapfiliate
Tapfiliate tapfiliate Wordpress Wordpress wordpress |
Tue, 23 Sep 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 22 Sep 2025 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tapfiliate Tapfiliate allows Stored XSS. This issue affects Tapfiliate: from n/a through 3.2.2. | |
| Title | WordPress Tapfiliate Plugin <= 3.2.2 - Cross Site Scripting (XSS) Vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2025-09-22T18:22:41.078Z
Updated: 2025-09-23T14:13:47.176Z
Reserved: 2025-09-03T09:03:53.070Z
Link: CVE-2025-58689
Vulnrichment
Updated: 2025-09-23T13:59:30.322Z
NVD
Status : Awaiting Analysis
Published: 2025-09-22T19:16:20.807
Modified: 2025-09-22T21:22:16.313
Link: CVE-2025-58689
Redhat
No data.