CVE-2025-13513 | Clik Stats Plugin up to 0.8 on WordPress $_SERVER[‘PHP_SELF’] cross site scripting

Inserito da Angelo Barbosa | Dic 3, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Clik Stats Plugin up to 0.8 on WordPress. This vulnerability affects unknown code. Such manipulation of the argument $_SERVER[‘PHP_SELF’] leads to cross site scripting.

This vulnerability is listed as CVE-2025-13513. The attack may be performed from remote. There is no available exploit.

CVE-2025-13513 | Clik Stats Plugin up to 0.8 on WordPress $_SERVER[‘PHP_SELF’] cross site scripting

Post correlati

CVE-2025-26868 | fastflow Fast Flow Plugin up to 1.2.16 on WordPress cross site scripting

CVE-2024-36064 | NLL com.nll.cb up to 0.330-playStore-NoAccessibility-arm8 on Android com.nll.cb.dialer.dialer.DialerActivity permission

CVE-2023-40550 | rhboot shim verify_buffer_sbat out-of-bounds

CVE-2023-7170 | EventON-RSVP Plugin up to 2.9.4 on WordPress cross site scripting