CVE-2025-6987 | Advanced iFrame Plugin up to 2025.5 on WordPress Shortcode advanced_iframe cross site scripting

Inserito da Angelo Barbosa | Lug 25, 2025 | CVE

A vulnerability has been found in Advanced iFrame Plugin up to 2025.5 on WordPress and classified as problematic. This vulnerability affects the function advanced_iframe of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2025-6987. The attack can be initiated remotely. There is no exploit available.

CVE-2025-6987 | Advanced iFrame Plugin up to 2025.5 on WordPress Shortcode advanced_iframe cross site scripting

Post correlati

CVE-2024-50348 | InstantSoft icms2 up to 2.16.2 Photo Album Page cross site scripting (GHSA-f6cf-jg84-fw29)

CVE-2024-30890 | ED01-CMS 1.0 categories.php cross site scripting

CVE-2024-41086 | Linux Kernel up to 6.9.7 bcachefs bch2_sb_downgrade_validate (bf920ed92ef2/692aa7a54b2b)

CVE-2025-32019 | Harbor up to 2.11.2 markdown cross site scripting