CVE-2025-49035

UNKNOWN 0.0

WordPress Admin Menu Groups plugin <= 0.1.2 - Cross Site Scripting (XSS) vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in chaimchaikin Admin Menu Groups admin-menu-groups allows Stored XSS.This issue affects Admin Menu Groups: from n/a through <= 0.1.2.

CWE	CWE-79
Vendor	chaimchaikin
Product	admin menu groups
Published	Aug 27, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for chaimchaikin admin menu groups

Be the first to know when new unknown vulnerabilities affecting chaimchaikin admin menu groups are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

chaimchaikin / Admin Menu Groups

0 ≤ 0.1.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/admin-menu-groups/vulnerability/wordpress-admin-menu-groups-plugin-0-1-2-cross-site-scripting-xss-vulnerability?_s_id=cve

Credits

Nabil Irawan | Patchstack Bug Bounty Program