CVE-2025-1064 | xootix Login Signup Popup Plugin up to 2.8.5 on WordPress Shortcode xoo_el_action cross site scripting

Inserito da Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability was found in xootix Login Signup Popup Plugin up to 2.8.5 on WordPress and classified as problematic. This issue affects the function xoo_el_action of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2025-1064. The attack may be initiated remotely. There is no exploit available.

CVE-2025-1064 | xootix Login Signup Popup Plugin up to 2.8.5 on WordPress Shortcode xoo_el_action cross site scripting

Post correlati

CVE-2024-9043 | Cellopoint Secure Email Gateway up to 4.5.0 Packets stack-based overflow

CVE-2024-41010 | Linux Kernel 6.6 Network Name tcf_chain0_head_change_cb_del use after free (1cb6f0bae504)

CVE-2024-40674 | Google Android 14 WifiConfigurationUtil.java validateSsid denial of service

CVE-2024-39805 | Intel DSA Software up to 23.4.38 data authenticity (intel-sa-01030)