CVE-2025-2929 – “WordPress Order Delivery Date Reflected Cross-Site Scripting”

May 20, 2025

CVE ID : CVE-2025-2929

Published : May 20, 2025, 6:15 a.m. | 1 hour, 46 minutes ago

Description : The Order Delivery Date WordPress plugin before 12.4.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleMicrosoft apre il codice sorgente di WSL: una svolta storica!

Next Article CVE-2024-5878 – WordPress SimpleLightbox Stored Cross-Site Scripting Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

NVIDIA’s latest driver fixes some big issues with DOOM: The Dark Ages

Community News: Latest PECL Releases (05.20.2025)

Community News: Latest PECL Releases (05.20.2025)

Getting Started with Personalization in Sitecore XM Cloud: Enable, Extend, and Execute

Universal Design and Global Accessibility Awareness Day (GAAD)

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

CVE-2025-2929 – “WordPress Order Delivery Date Reflected Cross-Site Scripting”

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4996 – Intelbras RF 301K Cross-Site Scripting Vulnerability

How to Use TestContainers in .Net

Beyond the Prompt: Finding the AI Design Tool That Actually Works for Designers

Resume Worded Review: Is It Worth the Price Tag?

Use weather data to improve forecasts with Amazon SageMaker Canvas

Automate interval partitioning maintenance and monitoring in Amazon RDS for PostgreSQL and Amazon Aurora PostgreSQL â€“ Part 2

Windows 11’s Photos app is about to get a big update, and it’s all about AI

MONTI Ransomware Targets New York Orthopaedic Center Excelsior Orthopaedics

A simple authentication mechanism in Total.js

CVE-2025-2929 – “WordPress Order Delivery Date Reflected Cross-Site Scripting”

Related Posts