CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-46227

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brecht Custom Related Posts custom-related-posts allows Stored XSS.This issue affects Custom Related Posts: from n/a through <= 1.7.4.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.4%

CVSS Severity

CVSS v3 Score 5.4

References

https://patchstack.com/database/Wordpress/Plugin/custom-related-posts/vulnerability/wordpress-custom-related-posts-1-7-4-cross-site-scripting-xss-vulnerability?_s_id=cve

Products affected by CVE-2025-46227

Brechtvds » Custom Related Posts » Version: N/A

cpe:2.3:a:brechtvds:custom_related_posts:-
Brechtvds » Custom Related Posts » Version: 1.7.4

cpe:2.3:a:brechtvds:custom_related_posts:1.7.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-46227

Products

Pricing

Contact Us