CVE-2025-11770 | BrightTALK Shortcode Plugin up to 2.4.0 on WordPress format cross site scripting

Inserito da Angelo Barbosa | Nov 21, 2025 | CVE

A vulnerability classified as problematic was found in BrightTALK Shortcode Plugin up to 2.4.0 on WordPress. This issue affects the function format of the component Shortcode Handler. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-11770. The attack can be launched remotely. No exploit exists.

CVE-2025-11770 | BrightTALK Shortcode Plugin up to 2.4.0 on WordPress format cross site scripting

Post correlati

CVE-2024-42055 | Cervantes up to 0.5-alpha cross site scripting

CVE-2025-4257 | SeaCMS 13.2 /admin_pay.php cstatus cross site scripting (Issue 26)

CVE-2024-7435 | Attire Plugin up to 2.0.6 on WordPress code injection

CVE-2025-55972 | TCL Smart TV UPnP Control Endpoint denial of service