CVE-2025-67978 | Educare Plugin up to 1.6.1 on WordPress cross site scripting

Inserito da Angelo Barbosa | Feb 2, 2026 | CVE

A vulnerability marked as problematic has been reported in Educare Plugin up to 1.6.1 on WordPress. This impacts an unknown function. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-67978. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-67978 | Educare Plugin up to 1.6.1 on WordPress cross site scripting

Post correlati

CVE-2023-52326 | Trend Micro Apex Central cross site scripting

CVE-2024-28120 | Exafunction codeium-chrome up to 1.2.52 Service Worker access control (GHSA-8c7j-2h97-q63p)

CVE-2024-1232 | CM Download Manager Plugin up to 2.9.0 on WordPress cross-site request forgery

CVE-2023-46840 | Xen Device access control