CVE-2025-13863 | RevInsite Plugin up to 1.1.0 on WordPress Shortcode token cross site scripting

Inserito da Angelo Barbosa | Dic 6, 2025 | CVE

A vulnerability marked as problematic has been reported in RevInsite Plugin up to 1.1.0 on WordPress. Affected is an unknown function of the component Shortcode Handler. This manipulation of the argument token causes cross site scripting.

This vulnerability is tracked as CVE-2025-13863. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-13863 | RevInsite Plugin up to 1.1.0 on WordPress Shortcode token cross site scripting

Post correlati

CVE-2024-12496 | Linear Plugin up to 2.7.12 on WordPress cross site scripting

CVE-2024-28000 | LiteSpeed Cache Plugin up to 6.3.0.1 on WordPress privileges assignment

CVE-2025-24009 | Siemens SIRIUS Safety Relays 3SK2 permission assignment (ssa-222768)

CVE-2025-51865 | Ai2 Playground Web Service LLM Chat up to 2025-06-03 Object Reference thread resource injection