Wordwebsoftware Crossword Compiler Puzzles vulnerabilities
2 known vulnerabilities affecting wordwebsoftware/crossword_compiler_puzzles.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-46490P2CRITICALCVSS 9.9≤ 5.22025-05-23
CVE-2025-46490 [CRITICAL] CWE-434 CVE-2025-46490: Unrestricted Upload of File with Dangerous Type vulnerability in wordwebsoftware Crossword Compiler
Unrestricted Upload of File with Dangerous Type vulnerability in wordwebsoftware Crossword Compiler Puzzles crossword-compiler-puzzles allows Upload a Web Shell to a Web Server.This issue affects Crossword Compiler Puzzles: from n/a through <= 5.2.
nvd
CVE-2025-46493P4MEDIUMCVSS 6.5≤ 14.52025-05-23
CVE-2025-46493 [MEDIUM] CWE-79 CVE-2025-46493: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wordwebsoftware Crossword Compiler Puzzles crossword-compiler-puzzles allows Stored XSS.This issue affects Crossword Compiler Puzzles: from n/a through <= 14.5.
nvd