CVE-2025-8567 | Nexter Blocks Plugin up to 4.5.4 on WordPress Widget cross site scripting

Inserito da Angelo Barbosa | Ago 18, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Nexter Blocks Plugin up to 4.5.4 on WordPress. The impacted element is an unknown function of the component Widget. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2025-8567. The attack may be initiated remotely. There is no available exploit.

CVE-2025-8567 | Nexter Blocks Plugin up to 4.5.4 on WordPress Widget cross site scripting

Post correlati

CVE-2024-26648 | Linux Kernel up to 6.6.14/6.7.2 display edp_setup_replay null pointer dereference (22ae604aea14/c02d257c6541/7073934f5d73)

CVE-2025-48139 | StyleAI Plugin up to 1.0.4 on WordPress authorization

CVE-2025-8267 | ssrfcheck up to 1.1.x server-side request forgery (SNYK-JS-SSRFCHECK-9510756)

CVE-2024-31468 | Aruba InstantOS/ArubaOS PAPI buffer overflow (ARUBA-PSA-2024-006)