CVE-2025-49863 Information

Jun 18, 2025 cve

Description

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in WP Codeus Advanced Sermons allows Stored XSS. This issue affects Advanced Sermons: from n/a through 3.6.

Reference

https://patchstack.com/database/wordpress/plugin/advanced-sermons/vulnerability/wordpress-advanced-sermons-plugin-3-6-cross-site-scripting-xss-vulnerability?_s_id=cve

CNNVD-202506-2064 (Published: 2025-06-17)

Share on: