CVE-2025-48080 – Uncanny Owl Uncanny Toolkit for LearnDash Stored Cross-site Scripting

May 16, 2025

CVE ID : CVE-2025-48080

Published : May 16, 2025, 4:15 p.m. | 47 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Stored XSS. This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.7.0.2.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48113 – Broadstreet Stored Cross-site Scripting

Next Article CVE-2025-48112 – Karimmughal Cross-site Scripting (XSS) Vulnerability

Turning User Research Into Real Organizational Change

June 2025: All AI updates from the past month

Building a culture that will drive platform engineering success

Gartner: More than 40% of agentic AI projects will be canceled in the next few years

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

This gimbal-tracking webcam has TWO cameras and a great price — but it may not be “private” enough

I spent two months using the massive Area-51 gaming rig — both a powerful beast PC and an RGB beauty queen

“Using AI is no longer optional” — Did Microsoft just make Copilot mandatory for its staff as a critical performance metric?

June report 2025

June report 2025

Make your JS functions smarter and cleaner with default parameters

Best Home Interiors in Hyderabad – Top Designers & Affordable Packages

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

This gimbal-tracking webcam has TWO cameras and a great price — but it may not be “private” enough

I spent two months using the massive Area-51 gaming rig — both a powerful beast PC and an RGB beauty queen

CVE-2025-48080 – Uncanny Owl Uncanny Toolkit for LearnDash Stored Cross-site Scripting

Google fixes fourth actively exploited Chrome zero-day of 2025

Sudo local privilege escalation vulnerabilities fixed (CVE-2025-32462, CVE-2025-32463)

CVE-2025-48259 – Juan Carlos WP Mapa Politico España CSRF

Google AI Introduces Ironwood: A Google TPU Purpose-Built for the Age of Inference

Windows 11 Beta fixes Vista startup sound bug, Dev build still stuck

CVE-2025-32752 – Dell ThinOS Cleartext Storage of Sensitive Information Vulnerability

Commvault Updates Security Advisory After Nation-State Threat Actor Activity in Azure

Over 20 Malicious Crypto Wallet Apps Found on Google Play, CRIL Warns

How Amazon Finance Automation built an operational data store with AWS purpose built databases to power critical finance applications

Players aren’t buying Call of Duty’s “error” excuse for the ads Activision started forcing into the game’s menus recently

CVE-2025-48080 – Uncanny Owl Uncanny Toolkit for LearnDash Stored Cross-site Scripting

Related Posts