CVE-2025-68520 | ThemeGoods DotLife Plugin up to 4.9.5 on WordPress cross site scripting

Inserito da Angelo Barbosa | Gen 22, 2026 | CVE

A vulnerability, which was classified as problematic, was found in ThemeGoods DotLife Plugin up to 4.9.5 on WordPress. This impacts an unknown function. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-68520. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2025-68520 | ThemeGoods DotLife Plugin up to 4.9.5 on WordPress cross site scripting

Post correlati

CVE-2025-39920 | Linux Kernel up to 6.16.5 add_interval null pointer dereference

CVE-2024-5792 | Houzez CRM Plugin up to 1.4.2 on WordPress sql injection

CVE-2020-11936 | Canonical Apport prior 2.20.11-0ubuntu27.6 gdbus insecure inherited permissions

CVE-2023-6239 | M-Files Server 23.9/23.10/23.11 Configuration permissions