This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
CVE Sentinel
cve-notifications.bsky.social
did:plc:fmpxu5qaccixyxvvyzsllshl
ID: CVE-2025-22817
CVSS V3.1: MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Venutius BP Profile Shortcodes Extra allows Stored XSS.This issue affects BP Profile Shortcodes Extra: from n/a through 2.6.0.
#security #infosec #cve-alert
https://nvd.nist.gov/vuln/detail/CVE-2025-22817
2025-01-09T16:18:22.358Z