Metrics
Affected Vendors & Products
Solution
Update the WordPress CM On Demand Search And Replace plugin to the latest available version (at least 1.5.3).
Workaround
No workaround given by the vendor.
Sat, 16 Aug 2025 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Cminds
Cminds cm On Demand Search And Replace Cminds cm Search And Replace Wordpress Wordpress wordpress |
|
Vendors & Products |
Cminds
Cminds cm On Demand Search And Replace Cminds cm Search And Replace Wordpress Wordpress wordpress |
Thu, 14 Aug 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 14 Aug 2025 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreativeMindsSolutions CM On Demand Search And Replace allows Stored XSS. This issue affects CM On Demand Search And Replace: from n/a through 1.5.2. | |
Title | WordPress CM On Demand Search And Replace Plugin <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-08-14T19:30:52.184Z
Reserved: 2025-07-28T10:56:33.521Z
Link: CVE-2025-54727

Updated: 2025-08-14T19:30:48.964Z

Status : Awaiting Analysis
Published: 2025-08-14T19:15:38.133
Modified: 2025-08-15T13:12:51.217
Link: CVE-2025-54727

No data.

Updated: 2025-08-16T21:41:02Z