CVE-2025-22725 | loopus WP Virtual Assistant Plugin up to 3.0 on WordPress cross site scripting

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability has been found in loopus WP Virtual Assistant Plugin up to 3.0 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. Performing a manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-22725. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-22725 | loopus WP Virtual Assistant Plugin up to 3.0 on WordPress cross site scripting

Post correlati

CVE-2023-4856 | Lenovo SMM/SMM2/FPC API Endpoint os command injection

CVE-2025-13208 | FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0 hotelList.php subjectId/cityName sql injection

CVE-2024-36985 | Splunk Enterprise up to 9.0.9/9.1.4/9.2.1 Splunk_archiver unknown vulnerability (SVD-2024-0705)

CVE-2025-4110 | PHPGurukul Pre-School Enrollment System 1.0 /admin/edit-teacher.php mobilenumber sql injection