Ninja Pages Project - Ninja Pages CVE

Filtered by vendor Ninja Pages Project Subscribe

Filtered by product Ninja Pages

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2025-1454	1 Ninja Pages Project	1 Ninja Pages	2025-06-12	N/A	5.4 MEDIUM
The Ninja Pages WordPress plugin through 1.4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Vulnerabilities (CVE)