CVE-2025-13627 | Makesweat Plugin up to 0.1 on WordPress Setting makesweat_clubid cross site scripting

Inserito da Angelo Barbosa | Gen 13, 2026 | CVE

A vulnerability has been found in Makesweat Plugin up to 0.1 on WordPress and classified as problematic. Affected is the function makesweat_clubid of the component Setting Handler. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2025-13627. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-13627 | Makesweat Plugin up to 0.1 on WordPress Setting makesweat_clubid cross site scripting

Post correlati

CVE-2024-13112 | WP MediaTagger Plugin up to 4.1.1 on WordPress cross site scripting

CVE-2024-50971 | itsourcecode Construction Management System 1.0 print.php map_id sql injection

CVE-2023-50883 | ONLYOFFICE Docs up to 8.0.0 Macro access control

CVE-2023-7039 | Beijing Baichuo S210 up to 20231210 /importexport.php sql injection