CVE-2025-64190 | 8theme XStore Core Plugin up to 5.5 on WordPress cross site scripting

Inserito da Angelo Barbosa | Dic 30, 2025 | CVE

A vulnerability classified as problematic was found in 8theme XStore Core Plugin up to 5.5 on WordPress. Affected is an unknown function. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-64190. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2025-64190 | 8theme XStore Core Plugin up to 5.5 on WordPress cross site scripting

Post correlati

CVE-2025-35061 | Newforma Project Center up to 2023.1 NIX Service LegacyIntegrationServices.asmx authentication replay

CVE-2024-26268 | Liferay Portal/DXP information exposure

CVE-2024-31807 | Totolink EX200 4.0.3c.7646_B20201211 NTPSyncWithHost hostTime Privilege Escalation

CVE-2023-3441 | GitLab Enterprise Edition up to 16.3 Protected Branch exposure of sensitive information due to incompatible policies (Issue 416482)