CVE-2025-63073 | Dream-Theme The7 Plugin up to 12.8.0.2 on WordPress cross site scripting

Inserito da Angelo Barbosa | Dic 9, 2025 | CVE

A vulnerability marked as problematic has been reported in Dream-Theme The7 Plugin up to 12.8.0.2 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-63073. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-63073 | Dream-Theme The7 Plugin up to 12.8.0.2 on WordPress cross site scripting

Post correlati

CVE-2024-44563 | Tenda AX1806 1.0.0.1 setIptvInfo iptv.stb.port stack-based overflow

CVE-2024-3675 | wproyal Royal Elementor Addons and Templates Plugin up to 1.3.971 on WordPress Widgets cross site scripting

CVE-2024-45236 | NICMx Fort up to 1.6.2 Signed Object signedAttributes denial of service

CVE-2025-27088 | oxyno-zeta s3-proxy up to 4.17.x Request.URL.Path cross site scripting (GHSA-pp9m-qf39-hxjc)