CVE-2025-14865 | Passster Plugin up to 4.2.21/4.2.24 on WordPress Shortcode content_protector cross site scripting

Inserito da Angelo Barbosa | Gen 28, 2026 | CVE

A vulnerability classified as problematic has been found in Passster Plugin up to 4.2.21/4.2.24 on WordPress. This vulnerability affects the function content_protector of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-14865. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2025-14865 | Passster Plugin up to 4.2.21/4.2.24 on WordPress Shortcode content_protector cross site scripting

Post correlati

CVE-2025-1958 | aaluoxiang oa_system 1.0 address-mapper.xml outtype sql injection

CVE-2023-6631 | Subnet Solutions PowerSYSTEM Center 2020 up to 5.16.x unquoted search path (icsa-23-353-01 / Update 17)

CVE-2021-27961 | evesys up to 8.0 2202 indexeva.php action cross site scripting

CVE-2024-21188 | Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 Financial Service Remote Code Execution