Known Vulnerabilities for Featured Image by Mervin Praison
Listed below are 10 of the newest known vulnerabilities associated with "Featured Image" by "Mervin Praison".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57431 json | Author Cross Site Scripting (XSS) in Featured Image <= 2.1 versions. | Not Provided | 2026-06-26 | 2026-06-29 |
| CVE-2026-39693 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in fesomia FSM Custom Feat... | Not Provided | 2026-04-08 | 2026-04-13 |
| CVE-2026-10779 json | The Classified Listing – Classified ads & Business Directory plugin for WordPress is vulnerable to Missing Authorization in... | Not Provided | 2026-06-19 | 2026-06-22 |
| CVE-2026-7859 json | The Motors WordPress plugin before 1.4.110 does not have proper authorisation and CSRF checks on one of its AJAX actions, al... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-5077 json | The Total theme for WordPress is vulnerable to Stored Cross-Site Scripting via post titles in versions up to, and including, ... | Not Provided | 2026-05-02 | 2026-05-04 |
| CVE-2025-62937 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Johnny Post List Featur... | Not Provided | 2025-10-27 | 2026-04-27 |
| CVE-2025-62747 json | Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator featured-image-generator allows Exploiting In... | Not Provided | 2025-12-31 | 2026-04-23 |
| CVE-2025-62119 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ViitorCloud Technologie... | Not Provided | 2025-12-31 | 2026-04-23 |
| CVE-2025-58819 json | Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upl... | Not Provided | 2025-09-05 | 2026-04-23 |
| CVE-2025-47591 json | Missing Authorization vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Exploiting Incorrectly Config... | Not Provided | 2025-05-07 | 2026-04-23 |