CVE-2025-15380 | NotificationX Plugin up to 3.2.0 on WordPress nx-preview cross site scripting

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability has been found in NotificationX Plugin up to 3.2.0 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. Performing a manipulation of the argument nx-preview results in cross site scripting.

This vulnerability is known as CVE-2025-15380. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-15380 | NotificationX Plugin up to 3.2.0 on WordPress nx-preview cross site scripting

Post correlati

CVE-2024-4329 | Thim Elementor Kit Plugin up to 1.1.9 on WordPress id cross site scripting

CVE-2023-0737 | wallabag 2.5.2/2.5.3 /account/delete cross-site request forgery

CVE-2024-5758 | wpxpo PostX Plugin up to 4.0.4 on WordPress filterMobileText cross site scripting

CVE-2025-41443 | Mattermost up to 10.5.10/10.11.2 Guest User Permission ids authorization