CVE-2025-8015 | WP Shortcodes Plugin up to 7.4.2 on WordPress Image Title/Slide Link cross site scripting

Inserito da Angelo Barbosa | Lug 22, 2025 | CVE

A vulnerability, which was classified as problematic, was found in WP Shortcodes Plugin up to 7.4.2 on WordPress. This affects an unknown part. The manipulation of the argument Image Title/Slide Link leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-8015. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-8015 | WP Shortcodes Plugin up to 7.4.2 on WordPress Image Title/Slide Link cross site scripting

Post correlati

CVE-2024-11130 | ZZCMS up to 2023 /admin/msg.php keyword cross site scripting

CVE-2025-38241 | Linux Kernel up to 6.15.4/6.16-rc3 shmem allocation of resources

CVE-2024-37699 | DataLife Engine up to 17.1 dboption sql injection

CVE-2024-6321 | dwieeb ScrollTo Bottom Plugin up to 1.1.1 on WordPress options_page cross-site request forgery