CVE-2025-4963 | WP Extended Plugin up to 3.0.15 on WordPress SVG File Parser cross site scripting

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability was found in WP Extended Plugin up to 3.0.15 on WordPress. It has been classified as problematic. Affected is an unknown function of the component SVG File Parser. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-4963. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-4963 | WP Extended Plugin up to 3.0.15 on WordPress SVG File Parser cross site scripting

Post correlati

CVE-2023-6401 | NotePad++ up to 8.1 dbghelp.exe uncontrolled search path

CVE-2024-3040 | Netentsec NS-ASG Application Security Gateway 6.3 /admin/list_crl_conf CRLId sql injection

CVE-2024-30973 | V-SOL G-EPON ONU HG323AC-B 2.0.08-210 POST Request formFirewall Privilege Escalation

CVE-2024-5823 | gaizhenbiao ChuanhuChatGPT up to 20240410 Setting file inclusion