CVE-2025-10166 | tw2113 Social Media Shortcodes Plugin up to 1.3.1 on WordPress Shortcode cross site scripting

Inserito da Angelo Barbosa | Set 16, 2025 | CVE

A vulnerability was found in tw2113 Social Media Shortcodes Plugin up to 1.3.1 on WordPress. It has been classified as problematic. This issue affects the function Media of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-10166. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-10166 | tw2113 Social Media Shortcodes Plugin up to 1.3.1 on WordPress Shortcode cross site scripting

Post correlati

CVE-2025-11539 | Grafana grafana-image-renderer up to 4.0.16 /render/csv filePath code injection

CVE-2024-48045 | Leevio Happy Addons for Elementor Plugin up to 3.12.3 on WordPress authorization

CVE-2024-2685 | Campcodes Online Job Finder System 1.0 index.php view cross site scripting

CVE-2022-32502 | Nuki Bridge up to 1.21.x/2.13.1 Encrypted Token Parser buffer overflow