CVE-2025-14449 | BA Book Everything Plugin up to 1.8.14 on WordPress Shortcode babe-search-form cross site scripting

Inserito da Angelo Barbosa | Dic 18, 2025 | CVE

A vulnerability has been found in BA Book Everything Plugin up to 1.8.14 on WordPress and classified as problematic. This affects the function babe-search-form of the component Shortcode Handler. Performing manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-14449. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-14449 | BA Book Everything Plugin up to 1.8.14 on WordPress Shortcode babe-search-form cross site scripting

Post correlati

CVE-2025-10490 | Dylan James Zephyr Project Manager Plugin up to 3.3.202 on WordPress cross site scripting

CVE-2024-8137 | SourceCodester Record Management System 1.0 search_user.php search cross site scripting

CVE-2024-30046 | Microsoft Visual Studio race condition

CVE-2024-47434 | Adobe Substance3D Painter up to 10.1.0 out-of-bounds write (apsb24-86)