| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-39654 | WordPress WP Simple HTML Sitemap plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability | Ashish Ajani | WP Simple HTML Sitemap | - | - | 2026-04-08 08:30:36 | Deep Dive |
| CVE-2025-14076 | iXML – Google XML sitemap generator <= 0.6 - Reflected Cross-Site Scripting via 'iXML_email' Parameter | icount | iXML – Google XML sitemap generator | Medium | 6.1 | 2026-02-19 04:36:17 | Deep Dive |
| CVE-2026-22355 | WordPress Simple XML Sitemap plugin <= 1.3 - CSRF to Stored XSS vulnerability | gregmolnar | Simple XML Sitemap | - | - | 2026-01-22 16:52:35 | Deep Dive |
| CVE-2025-48304 | WordPress Google XML News Sitemap plugin plugin <= 0.02 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability | Gary Illyes | Google XML News Sitemap plugin | High | 7.1 | 2025-08-28 12:36:48 | Deep Dive |
| CVE-2025-53290 | WordPress WP Visual Sitemap plugin <= 1.0.2 - Cross Site Scripting (XSS) Vulnerability | anonymized-15272943 | WP Visual Sitemap | Medium | 6.5 | 2025-06-27 13:21:25 | Deep Dive |
| CVE-2025-6676 | Simple XML sitemap - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-083 | Drupal | Simple XML sitemap | - | - | 2025-06-26 13:33:54 | Deep Dive |
| CVE-2025-39413 | WordPress Simple Sitemap – Create a Responsive HTML Sitemap plugin <= 3.6.0 - Broken Access Control vulnerability | David Gwyer | Simple Sitemap – Create a Responsive HTML Sitemap | Medium | 4.3 | 2025-04-30 17:18:59 | Deep Dive |
| CVE-2025-31901 | WordPress Digihood HTML Sitemap Plugin <= 3.1.1 - Reflected Cross Site Scripting (XSS) vulnerability | Digihood | Digihood HTML Sitemap | High | 7.1 | 2025-04-03 13:27:17 | Deep Dive |
| CVE-2025-31822 | WordPress WordPress Simple HTML Sitemap plugin <= 3.4 - Broken Access Control vulnerability | Ashish Ajani | WP Simple HTML Sitemap | Medium | 5.3 | 2025-04-01 14:51:46 | Deep Dive |
| CVE-2025-31733 | WordPress WP Sitemap Plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability | Boot Div | WP Sitemap | Medium | 6.5 | 2025-04-01 14:51:03 | Deep Dive |
| CVE-2025-23753 | WordPress DN Sitemap Control plugin <= 1.0.6 - Reflected Cross Site Scripting (XSS) vulnerability | digireturn | DN Sitemap Control | High | 7.1 | 2025-03-03 13:30:18 | Deep Dive |
| CVE-2025-27318 | WordPress Simple Google Sitemap Plugin <= 1.6 - Cross Site Request Forgery (CSRF) vulnerability | ixiter | Simple Google Sitemap | Medium | 4.3 | 2025-02-24 14:49:02 | Deep Dive |
| CVE-2025-27312 | WordPress WP Sitemap plugin <= 1.0 - SQL Injection vulnerability | Jenst | WP Sitemap | High | 8.5 | 2025-02-24 14:48:59 | Deep Dive |
| CVE-2024-12339 | Digihood HTML Sitemap <= 3.1.1 - Reflected Cross-Site Scripting via 'channel' | digihood | Digihood HTML Sitemap | Medium | 6.1 | 2025-02-19 07:32:11 | Deep Dive |
| CVE-2025-26549 | WordPress WP Html Page Sitemap plugin <= 2.2 - CSRF to Stored Cross-Site Scripting | pa1 | WP Html Page Sitemap | High | 7.1 | 2025-02-13 13:52:51 | Deep Dive |
| CVE-2025-22342 | WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability | Jenst | WP Simple Sitemap | High | 7.1 | 2025-01-07 10:48:44 | Deep Dive |
| CVE-2024-55999 | WordPress XML Multilanguage Sitemap Generator plugin <= 2.0.6 - Broken Access Control vulnerability | Marco Giannini | XML Multilanguage Sitemap Generator | Medium | 5.3 | 2024-12-16 15:53:55 | Deep Dive |
| CVE-2023-49850 | WordPress WP Simple HTML Sitemap plugin <= 2.7 - Broken Access Control vulnerability | Ashish Ajani | WP Simple HTML Sitemap | Medium | 5.3 | 2024-12-09 11:30:03 | Deep Dive |
| CVE-2024-11424 | Slick Sitemap <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | pengbos | Slick Sitemap | Medium | 6.4 | 2024-11-21 02:06:39 | Deep Dive |
| CVE-2024-51922 | WordPress VP Sitemap plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | Maruf Arafat | VP Sitemap | Medium | 6.5 | 2024-11-19 16:30:57 | Deep Dive |