CVE-2025-11821 | Products By Custom Tax Plugin up to 2.2 on WordPress Shortcode woo_products_custom_tax cross site scripting

Inserito da Angelo Barbosa | Nov 10, 2025 | CVE

A vulnerability has been found in Products By Custom Tax Plugin up to 2.2 on WordPress and classified as problematic. This vulnerability affects the function woo_products_custom_tax of the component Shortcode Handler. Performing manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2025-11821. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-11821 | Products By Custom Tax Plugin up to 2.2 on WordPress Shortcode woo_products_custom_tax cross site scripting

Post correlati

CVE-2023-41505 | Student Enrollment 1.0 Profile Picture unrestricted upload

CVE-2024-53227 | Linux Kernel up to 6.12.1 scsi bfad_im_module_exit use after free

CVE-2023-38825 | Vanderbilt REDCap up to 13.7.x Password Reset update.php information disclosure

CVE-2024-33161 | J2EEFAST 2.7.0 unallocatedList sql_filter sql injection