CVE-2025-68906 | JNews Plugin up to 11.0.2 on WordPress cross site scripting

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability identified as problematic has been detected in JNews Plugin up to 11.0.2 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-68906. The attack may be initiated remotely. There is no available exploit.

CVE-2025-68906 | JNews Plugin up to 11.0.2 on WordPress cross site scripting

Post correlati

CVE-2025-4088 | Mozilla Thunderbird up to 137.x Storage Access API access control

CVE-2024-13235 | dotonpaper Pinpoint Booking System Plugin up to 2.9.9.5.2 on WordPress language sql injection

CVE-2023-45084 | SoftIron HyperCloud up to 2.0.2 Drive Caddy missing synchronization

CVE-2024-34556 | UkrSolution Barcode Scanner with Inventory & Order Manager Plugin information disclosure