ByteOS Network

Ashley

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2025-30847

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.9||MEDIUM

EPSS-0.15% / 34.90%

7 Day CHG~0.00%

Published-27 Mar, 2025 | 10:55

Updated-28 Apr, 2026 | 16:11

WordPress Novelist plugin <= 1.2.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ashley Novelist novelist allows Stored XSS.This issue affects Novelist: from n/a through <= 1.2.3.

Vendor-Ashley

Product-Novelist

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')