CVE-2025-12643 | Saphali LiqPay for Donate Plugin up to 1.0.2 on WordPress Shortcode saphali_liqpay cross site scripting

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability labeled as problematic has been found in Saphali LiqPay for Donate Plugin up to 1.0.2 on WordPress. Affected by this vulnerability is the function saphali_liqpay of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-12643. The attack may be performed from remote. There is no available exploit.

CVE-2025-12643 | Saphali LiqPay for Donate Plugin up to 1.0.2 on WordPress Shortcode saphali_liqpay cross site scripting

Post correlati

CVE-2024-44253 | Apple macOS up to 13.6/14.6 access control

CVE-2024-9777 | Ashe Plugin up to 2.243 on WordPress add_query_arg cross site scripting

Ivanti Secure Access Client Request Local Privilege Escalation

CVE-2024-30372 | Allegra Template getLinkText injection (ZDI-24-1165)