CVE-2025-49437 Information

Aug 15, 2025 cve

Description

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in worstguy WP LOL Rotation allows Stored XSS. This issue affects WP LOL Rotation: from n/a through 1.0.

Reference

https://patchstack.com/database/wordpress/plugin/league-of-legends-rotation/vulnerability/wordpress-wp-lol-rotation-1-0-cross-site-scripting-xss-vulnerability?_s_id=cve

CNNVD-202508-1566 (Published: 2025-08-14)

Share on: