ByteOS Network

WEN Solutions

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2025-49389

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.03% / 7.89%

7 Day CHG~0.00%

Published-20 Aug, 2025 | 08:03

Updated-20 Aug, 2025 | 14:39

WordPress Notice Bar Plugin <= 3.1.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WEN Solutions Notice Bar allows Stored XSS. This issue affects Notice Bar: from n/a through 3.1.3.

Vendor-WEN Solutions

Product-Notice Bar

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2023-47873

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9.1||CRITICAL

EPSS-3.12% / 86.30%

7 Day CHG~0.00%

Published-26 Mar, 2024 | 20:34

Updated-19 Mar, 2025 | 19:24

WordPress WP Child Theme Generator plugin <= 1.0.9 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9.

Vendor-wensolutions WEN Solutions wensolutions

Product-wp_child_theme_generator WP Child Theme Generator wp_child_theme_generator

CWE ID-CWE-434

Unrestricted Upload of File with Dangerous Type

CVE-2023-41847

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.08% / 23.68%

7 Day CHG~0.00%

Published-02 Oct, 2023 | 08:36

Updated-20 Sep, 2024 | 15:22

WordPress Notice Bar Plugin <= 3.1.0 is vulnerable to Cross Site Scripting (XSS)

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WEN Solutions Notice Bar plugin <= 3.1.0 versions.

Vendor-wensolutions WEN Solutions

Product-notice_bar Notice Bar

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')