CVE-2025-5531 | Employee Directory Plugin up to 4.5.0 on WordPress Shortcode emd_mb_meta cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Employee Directory Plugin up to 4.5.0 on WordPress. This affects the function emd_mb_meta of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-5531. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-5531 | Employee Directory Plugin up to 4.5.0 on WordPress Shortcode emd_mb_meta cross site scripting

Post correlati

CVE-2024-39805 | Intel DSA Software up to 23.4.38 data authenticity (intel-sa-01030)

CVE-2024-0700 | Simple Tweet Plugin up to 1.4.0.2 on WordPress cross site scripting

CVE-2024-46977 | OpenC3 cosmos up to 5.18.x LocalMode open_local_file path traversal (GHSA-8jxr-mccc-mwg8)

CVE-2025-24010 | vitejs vite up to 4.5.5/5.4.11/6.0.8 origin validation