๐Ÿ” CVE Alert

CVE-2025-57898

UNKNOWN 0.0

WordPress WP Frontend Admin plugin <= 1.22.7 - Cross Site Scripting (XSS) vulnerability

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jose Vega WP Frontend Admin display-admin-page-on-frontend allows Stored XSS.This issue affects WP Frontend Admin: from n/a through <= 1.22.7.

CWE CWE-79
Vendor jose vega
Product wp frontend admin
Published Sep 22, 2025
Last Updated Apr 1, 2026
Stay Ahead of the Next One

Get instant alerts for jose vega wp frontend admin

Be the first to know when new unknown vulnerabilities affecting jose vega wp frontend admin are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Jose Vega / WP Frontend Admin
0 โ‰ค 1.22.7

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/display-admin-page-on-frontend/vulnerability/wordpress-wp-frontend-admin-plugin-1-22-6-cross-site-scripting-xss-vulnerability?_s_id=cve

Credits

Muhammad Yudha - DJ | Patchstack Bug Bounty Program