CVE-2025-30087

HIGH Year: 2025
CVSS v3 Score
7.2
High
Weakness Type
CWE-79
View all →

Vulnerability Description

Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL.

Related Vulnerabilities

CVE-2016-15041

HIGH
CVSS:7.2(High)

The MainWP Dashboard – The Private WordPress Manager for Multiple Website Maintenance plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘mwp_setup_purchase_username’ parameter ...

CWE-792016