ByteOS Network

Zack Katz

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2025-68863

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-Not Assigned

EPSS-0.03% / 8.10%

7 Day CHG~0.00%

Published-20 Feb, 2026 | 15:46

Updated-20 Feb, 2026 | 16:55

WordPress iContact for Gravity Forms plugin <= 1.3.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Zack Katz iContact for Gravity Forms gravity-forms-icontact allows Reflected XSS.This issue affects iContact for Gravity Forms: from n/a through <= 1.3.2.

Vendor-Zack Katz

Product-iContact for Gravity Forms

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2025-46262

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.05% / 14.46%

7 Day CHG~0.00%

Published-19 May, 2025 | 17:06

Updated-21 May, 2025 | 20:25

WordPress Mad Mimi for WordPress plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Zack Katz Mad Mimi for WordPress allows Stored XSS.This issue affects Mad Mimi for WordPress: from n/a through 1.5.1.

Vendor-Zack Katz

Product-Mad Mimi for WordPress

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2025-25098

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.09% / 25.83%

7 Day CHG~0.00%

Published-07 Feb, 2025 | 10:11

Updated-07 Feb, 2025 | 15:54

WordPress Links in Captions plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Zack Katz Links in Captions allows Stored XSS. This issue affects Links in Captions: from n/a through 1.2.

Vendor-Zack Katz

Product-Links in Captions

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')