CVE-2025-4171 | WZ Followed Posts Plugin up to 3.1.0 on WordPress Shortcode wfp cross site scripting

Inserito da Angelo Barbosa | Mag 7, 2025 | CVE

A vulnerability classified as problematic has been found in WZ Followed Posts Plugin up to 3.1.0 on WordPress. This affects the function wfp of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-4171. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-4171 | WZ Followed Posts Plugin up to 3.1.0 on WordPress Shortcode wfp cross site scripting

Post correlati

CVE-2024-28134 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 Session Token cleartext transmission (VDE-2024-019)

CVE-2024-51774 | qBittorrent up to 5.0.0 certificate validation

CVE-2024-33969 | Janobe School Attendance Monitoring System 1.0 index.php id sql injection

CVE-2024-12237 | Photo Gallery Slideshow & Masonry Tiled Gallery Plugin server-side request forgery