CVE-2025-4594 | Tournamatch Plugin up to 4.6.1 on WordPress Shortcode trn-ladder-registration-button cross site scripting

Inserito da Angelo Barbosa | Mag 22, 2025 | CVE

A vulnerability was found in Tournamatch Plugin up to 4.6.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function trn-ladder-registration-button of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-4594. The attack can be launched remotely. There is no exploit available.

CVE-2025-4594 | Tournamatch Plugin up to 4.6.1 on WordPress Shortcode trn-ladder-registration-button cross site scripting

Post correlati

CVE-2024-10170 | code-projects Hospital Management System 1.0 get_doctor.php specilizationid sql injection

CVE-2024-27848 | Apple iOS/iPadOS App permission

CVE-2024-20754 | Adobe Lightroom untrusted search path (APSB24-17)

CVE-2024-0986 | Issabel PBX 4.0.0 Asterisk-Cli index.php Command os command injection