Approved changes feed: RSS · Atom

cpe:2.3:a:alleythemes:home_services:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlleythemes (cb9d682c-fb5b-5a63-a9ca-5d09a8590b32)
ProductHome Services (64481d09-f99d-5d30-829b-067c88c6837a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-26930 vulnerable 2026-06-08 07:14:50.691321 WordPress Home Services plugin <= 1.2.6 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alleythemes Home Services home-services allows DOM-Based XSS.This issue affects Home Services: from n/a through <= 1.2.6.
Published: 2025-04-15T21:53:12.473Z
Updated: 2026-04-28T16:11:44.296Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.