CVE-2025-15654 – WordPress Prague plugin

CVE ID :CVE-2025-15654

Published : June 3, 2026, 9:16 a.m. | 1 hour, 16 minutes ago

Description :Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Fox-themes Prague allows Reflected XSS.

This issue affects Prague: from n/a through 2.2.8.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-4035 – Environment Variable Resolution Vulnerability in mlflow/mlflow

CVE-2026-5078 – morgan vulnerable to Log Forging via unneutralized control characters in :remote-user

CVE-2026-50052 – Varnish Cache HTTP/2 Request Smuggling

CVE-2026-50031 – FreeIPMI ipmi-oem Buffer Overflow