CVE ID : CVE-2025-5303

Published : June 7, 2025, 9:15 a.m. | 1 hour, 30 minutes ago

Description : The LTL Freight Quotes – Freightview Edition, LTL Freight Quotes – Daylight Edition and LTL Freight Quotes – Day & Ross Edition plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the expiry_date parameter in all versions up to, and including, 1.0.11, 2.2.6 and 2.1.10 respectively, due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Apple’s App Store shaken: Court ends ‘Apple tax’ on external purchases

The court has recently denied Apple’s request to suspend the enforcement of a ruling that allows users to navigate to external websites for purchases via in-app links, deeming the request inappropriat …
Read more

Published Date:
Jun 07, 2025 (1 hour, 52 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2022-32898

Unpatched XSS Vulnerability in Jenkins Gatling Plugin Puts Users at Risk (CVE-2025-5806)

The Jenkins community has issued a high-severity security advisory for a newly disclosed vulnerability in the Gatling Plugin—a popular tool used for integrating performance testing reports into Jenkin …
Read more

Published Date:
Jun 07, 2025 (1 hour, 35 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-5806