CVE-2025-67991 | User Extra Fields Plugin up to 16.8 on WordPress cross site scripting

Inserito da Angelo Barbosa | Feb 17, 2026 | CVE

A vulnerability classified as problematic has been found in User Extra Fields Plugin up to 16.8 on WordPress. This vulnerability affects unknown code. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-67991. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-67991 | User Extra Fields Plugin up to 16.8 on WordPress cross site scripting

Post correlati

CVE-2023-50693 | dom96 Jester up to 0.6.0 Request Privilege Escalation (Issue 326)

CVE-2025-5555 | Nixdorf Wincor PORT IO Driver up to 1.0.0.1 IOCTL wnport.sys sub_11100 stack-based overflow

CVE-2024-46774 | Linux Kernel up to 6.10.9 Speculative Execution sys_rtas stack-based overflow (68d815648094/0974d03eb479)

CVE-2025-5151 | defog-ai introspect up to 0.1.4 analysis_tools.py execute_analysis_code_safely code code injection (Issue 495 / ID 502)