CVE-2025-5258 | Conference Scheduler Plugin up to 2.5.1 on WordPress className cross site scripting

Inserito da Angelo Barbosa | Giu 23, 2025 | CVE

A vulnerability has been found in Conference Scheduler Plugin up to 2.5.1 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument className leads to cross site scripting.

This vulnerability was named CVE-2025-5258. The attack can be initiated remotely. There is no exploit available.

CVE-2025-5258 | Conference Scheduler Plugin up to 2.5.1 on WordPress className cross site scripting

Post correlati

CVE-2024-43045 | Jenkins prior LTS 2.452.3/2.470 My Views permission

CVE-2025-5221 | FreeFloat FTP Server 1.0.0 QUOTE Command buffer overflow

CVE-2024-7873 | Veribilim Software Veribase Order 4.010.2 cross site scripting

CVE-2024-20430 | Cisco Meraki Systems Manager Agent up to 4.1.5 on Windows uncontrolled search path (cisco-sa-meraki-agent-dll-hj-Ptn7PtKe)