CVE-2025-0863 | flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress Shortcode idx_frame cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress. Affected by this issue is the function idx_frame of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-0863. The attack may be launched remotely. There is no exploit available.

CVE-2025-0863 | flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress Shortcode idx_frame cross site scripting

Post correlati

CVE-2024-10251 | Ivanti Security Controls prior 2024.4.1 default permission

IBM CICS TX Standard cross-site request forgery (XFDB-266057)

CVE-2023-31031 | NVIDIA DGX A100 prior 1.25 heap-based overflow

CVE-2022-22942 | Vmware Photon OS 3.0/4.0 vmwgfx Driver Local Privilege Escalation