CM Header & Footer Script Loader – Insert Script Plugin, CVE-2025-31091
- CVE, Research URL
- Home page URL
-
Security reports for CM Header & Footer Script Loader – Insert Script Plugin
- Published on
- Apr 03, 2025
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreativeMindsSolutions CM Header and Footer allows Stored XSS. This issue affects CM Header and Footer: from n/a through 1.2.4.
- Affected versions
-
Min -, max 1.2.5.
- Status
-
vulnerable
| Previous vulnerability researches |
|---|
| AB Google Map Travel (AB-MAP) (CVE-2025-31613) , Apr 03, 2025 |
| AB Google Map Travel (AB-MAP) (CVE-2015-2755) , Jun 06, 2024 |