CVE-2025-14000 | Membership Plugin Plugin up to 3.2.15 on WordPress Shortcode register_form cross site scripting

Inserito da Angelo Barbosa | Dic 22, 2025 | CVE

A vulnerability classified as problematic was found in Membership Plugin Plugin up to 3.2.15 on WordPress. Affected is the function register_form of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-14000. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-14000 | Membership Plugin Plugin up to 3.2.15 on WordPress Shortcode register_form cross site scripting

Post correlati

CVE-2025-25973 | Ppress 0.0.9 Related Recommendations article.category article.title/article.category/article.tags cross site scripting

CVE-2024-38817 | VMware NSX/Cloud Foundation NSX Edge CLI Terminal command injection

CVE-2024-5844 | Google Chrome up to 126.0.6478.53 Tab Strip heap-based overflow (ID 331960)

CVE-2024-2740 | Planet IGS-4215-16T2S 1.305b210528 Web Interface information disclosure