CVE-2025-11870 | Simple Business Data Plugin up to 1.0.1 on WordPress Shortcode simple_business_data cross site scripting

Inserito da Angelo Barbosa | Ott 22, 2025 | CVE

A vulnerability classified as problematic was found in Simple Business Data Plugin up to 1.0.1 on WordPress. The affected element is the function simple_business_data of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-11870. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-11870 | Simple Business Data Plugin up to 1.0.1 on WordPress Shortcode simple_business_data cross site scripting

Post correlati

CVE-2025-10826 | Campcodes Online Beauty Parlor Management System 1.0 sales-reports-detail.php fromdate/todate sql injection

CVE-2024-10801 | vanquish WordPress User Extra Fields Plugin up to 16.5 on WordPress ajax_manage_file_chunk_upload unrestricted upload

CVE-2025-4039 | PHPGurukul Rail Pass Management System 1.0 /admin/search-pass.php searchdata sql injection

CVE-2023-52535 | Unisoc SC7731E/SC9832E/SC9863A/T310/T610/T618 vsp Driver denial of service