CVE-2025-30547

Publication date

2025-04-01 05:31:34

Family

Patchstack

State

PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in David Tufts WP Cards allows Reflected XSS. This issue affects WP Cards: from n/a through 1.5.1.