Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vladimir Prelovac SEO Friendly Images seo-image allows DOM-Based XSS.This issue affects SEO Friendly Images: from n/a through <= 3.0.5.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Vladimir Prelovac |
|
| Wordpress |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
| Vladimir Prelovac |
|
| Wordpress |
|
References
History
Wed, 08 Apr 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Vladimir Prelovac
Vladimir Prelovac seo Friendly Images Wordpress Wordpress wordpress |
|
| Vendors & Products |
Vladimir Prelovac
Vladimir Prelovac seo Friendly Images Wordpress Wordpress wordpress |
Wed, 08 Apr 2026 08:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vladimir Prelovac SEO Friendly Images seo-image allows DOM-Based XSS.This issue affects SEO Friendly Images: from n/a through <= 3.0.5. | |
| Title | WordPress SEO Friendly Images plugin <= 3.0.5 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-04-08T08:30:37.934Z
Reserved: 2026-04-07T10:57:59.671Z
Link: CVE-2026-39665
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-04-08T09:16:37.743
Modified: 2026-04-08T09:16:37.743
Link: CVE-2026-39665
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-08T19:41:11Z