CVE-2025-12118 | Schema Scalpel Plugin up to 1.6.1 on WordPress JSON-LD Schema Post Title cross site scripting

Inserito da Angelo Barbosa | Ott 31, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Schema Scalpel Plugin up to 1.6.1 on WordPress. Affected is an unknown function of the component JSON-LD Schema. This manipulation of the argument Post Title causes cross site scripting.

This vulnerability is registered as CVE-2025-12118. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-12118 | Schema Scalpel Plugin up to 1.6.1 on WordPress JSON-LD Schema Post Title cross site scripting

Post correlati

CVE-2024-54461 | Flutter File Selector up to 0.5.1+11 Internal File path traversal

CVE-2024-32715 | Olive Themes Olive One Click Demo Import Plugin up to 1.1.1 on WordPress authorization

CVE-2024-4541 | Custom Product List Table Plugin up to 3.0.0 on WordPress cross-site request forgery

CVE-2023-47845 | Lim Kai Yang Grab & Save Plugin up to 1.0.4 on WordPress cross-site request forgery