CVE-2025-0863 | flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress Shortcode idx_frame cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress. Affected by this issue is the function idx_frame of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-0863. The attack may be launched remotely. There is no exploit available.

CVE-2025-0863 | flexmls Flexmls IDX Plugin up to 3.14.28 on WordPress Shortcode idx_frame cross site scripting

Post correlati

CVE-2024-1753 | podman Containerfile symlink

CVE-2024-3520 | Country State City Dropdown CF7 Plugin up to 2.7.1 on WordPress authorization

CVE-2024-38013 | Microsoft Windows up to Server 2022 23H2 Server Backup link following

CVE-2025-21840 | Linux Kernel up to 6.13.3/6.14-rc2 Netlink Attribute memory corruption