CVE-2025-12581 | Attachments Handler Plugin up to 1.1.7 on WordPress cross site scripting

Inserito da Angelo Barbosa | Dic 19, 2025 | CVE

A vulnerability classified as problematic has been found in Attachments Handler Plugin up to 1.1.7 on WordPress. The affected element is an unknown function. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-12581. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-12581 | Attachments Handler Plugin up to 1.1.7 on WordPress cross site scripting

Post correlati

CVE-2024-23650 | moby buildkit up to 0.12.4 unusual condition (GHSA-9p26-698r-w4hx)

CVE-2025-8290 | List Subpages Plugin up to 1.0.6 on WordPress Title cross site scripting

CVE-2024-6448 | Mollie Payments for WooCommerce Plugin up to 7.7.0 on WordPress information disclosure

CVE-2025-6477 | SourceCodester Student Result Management System 1.0 System Settings Page /script/admin/system School Name cross site scripting