CVE-2025-7495 | WP-Members Plugin up to 3.5.4.1 on WordPress Shortcode wpmem_login_link cross site scripting

Inserito da Angelo Barbosa | Lug 21, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in WP-Members Plugin up to 3.5.4.1 on WordPress. Affected by this issue is the function wpmem_login_link of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-7495. The attack may be launched remotely. There is no exploit available.

CVE-2025-7495 | WP-Members Plugin up to 3.5.4.1 on WordPress Shortcode wpmem_login_link cross site scripting

Post correlati

CVE-2024-7311 | code-projects Online Bus Reservation Site 1.0 register.php Email sql injection

CVE-2024-52912 | Bitcoin Core up to 0.20.x Split integer overflow

CVE-2025-6474 | code-projects Inventory Management System 1.0 /changeUsername.php user_id sql injection

CVE-2024-41007 | Linux Kernel up to 4.18 TCP tcp_retransmit_timer resource consumption (97a9063518f1)