CVE-2025-13859 | AffiliateX Plugin up to 1.0.0/1.3.9.3 on WordPress Setting save_customization_settings cross site scripting

Inserito da Angelo Barbosa | Gen 15, 2026 | CVE

A vulnerability was found in AffiliateX Plugin up to 1.0.0/1.3.9.3 on WordPress. It has been rated as problematic. The impacted element is the function save_customization_settings of the component Setting Handler. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-13859. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-13859 | AffiliateX Plugin up to 1.0.0/1.3.9.3 on WordPress Setting save_customization_settings cross site scripting

Post correlati

CVE-2025-10411 | itsourcecode E-Logbook with Health Monitoring System for COVID-19 POST Request check_profile.php cross site scripting

CVE-2025-51531 | Sage DPW 2024.12.003 WService tabfields cross site scripting

CVE-2024-45063 | FreeBSD ctl_write_buffer use after free

CVE-2025-15194 | D-Link DIR-600 up to 2.15WWb02 HTTP Header hedwig.cgi Cookie stack-based overflow