CVE-2025-14142 | Electric Enquiries Plugin up to 1.1 on WordPress Shortcode button cross site scripting

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability categorized as problematic has been discovered in Electric Enquiries Plugin up to 1.1 on WordPress. Affected by this vulnerability is an unknown functionality of the component Shortcode Handler. Such manipulation of the argument button leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-14142. The attack can be launched remotely. No exploit exists.

CVE-2025-14142 | Electric Enquiries Plugin up to 1.1 on WordPress Shortcode button cross site scripting

Post correlati

CVE-2024-49990 | Linux Kernel up to 6.10.13/6.11.2 HDCP xe_gsc null pointer dereference (c940627857ee/7266a424b1e5/b4224f6bae38)

CVE-2024-11674 | CodeAstro Hospital Management System 1.0 his_doc_update-account.php doc_dpic unrestricted upload

CVE-2024-44302 | Apple iOS/iPadOS Font information disclosure

CVE-2024-9952 | SourceCodester Online Eyewear Shop 1.0 Contact Information Page contact_info Address cross site scripting