CVE-2025-15522 | Uncanny Automator Plugin up to 6.10.0.2 on WordPress Shortcode automator_discord_user_mapping verified_message cross site scripting

Inserito da Angelo Barbosa | Gen 22, 2026 | CVE

A vulnerability labeled as problematic has been found in Uncanny Automator Plugin up to 6.10.0.2 on WordPress. This issue affects the function automator_discord_user_mapping of the component Shortcode Handler. Executing a manipulation of the argument verified_message can lead to cross site scripting.

This vulnerability appears as CVE-2025-15522. The attack may be performed from remote. There is no available exploit.

CVE-2025-15522 | Uncanny Automator Plugin up to 6.10.0.2 on WordPress Shortcode automator_discord_user_mapping verified_message cross site scripting

Post correlati

CVE-2024-47071 | FreePBX OSS Endpoint Manager up to 14.0.3 Module path traversal

CVE-2025-11587 | jgrietveld Call Now Button Plugin up to 1.5.3 on WordPress authorization

CVE-2024-2313 | bpftrace up to 0.20.1 on Linux src/utils.cpp unpack_kheaders_tar_xz temp file

CVE-2025-1671 | Elated-Themes Academist Membership Plugin up to 1.1.6 on WordPress academist_membership_check_facebook_user authentication bypass