CVE-2025-9879 | Spotify Embed Creator Plugin up to 1.0.5 on WordPress Shortcode spotify cross site scripting

Inserito da Angelo Barbosa | Set 11, 2025 | CVE

A vulnerability was found in Spotify Embed Creator Plugin up to 1.0.5 on WordPress. It has been classified as problematic. Impacted is the function spotify of the component Shortcode Handler. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2025-9879. The attack may be initiated remotely. There is no available exploit.

CVE-2025-9879 | Spotify Embed Creator Plugin up to 1.0.5 on WordPress Shortcode spotify cross site scripting

Post correlati

CVE-2024-26588 | Linux Kernel up to 6.0/6.1.74/6.6.13/6.7.1 BPF out-of-bounds

CVE-2025-47295 | Fortinet FortiOS up to 6.4.16/7.0.14/7.2.7/7.4.3 FGFM Daemon buffer over-read (FG-IR-24-381)

CVE-2024-56020 | Mario Di Pasquale SvegliaT Buttons Plugin up to 1.3.0 on WordPress cross site scripting

CVE-2022-49460 | Linux Kernel up to 5.18.2 remove state issue