All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2025-69154
HIGHpublished 2026-07-02 12:16 UTC · 2 days ago · modified 2026-07-02 15:16 UTC
7.1
CVSS / 10
// description
Unauthenticated Cross Site Scripting (XSS) in SpaLab | Beauty Salon WordPress Theme <= 6.7 versions.
// weaknesses (CWE)
- CWE-79