CVE-2025-4429

CVE-2025-4429: WordPress Gearside Developer Dashboard <= 1.0.72 - Reflected XSS

Vendor Unknown
Product Gearside Developer Dashboard
Published May 30, 2025
Last update May 30, 2025

CVSS base score

What the vulnerability does

01Description

The Gearside Developer Dashboard WordPress plugin through 1.0.72 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.

Key dates

02Disclosure timeline

May 30, 2025 CVE published
May 30, 2025 Record updated