CVE-2025-8561 | Ova Advent Plugin up to 1.1.7 on WordPress Shortcode cross site scripting

Inserito da Angelo Barbosa | Ott 14, 2025 | CVE

A vulnerability was found in Ova Advent Plugin up to 1.1.7 on WordPress and classified as problematic. Affected is an unknown function of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-8561. The attack may be launched remotely. There is no exploit available.

CVE-2025-8561 | Ova Advent Plugin up to 1.1.7 on WordPress Shortcode cross site scripting

Post correlati

CVE-2023-50166 | Pegasystems Pega Platform up to 8.8.3 redirect cross site scripting

CVE-2024-6666 | Huaxia ERP Plugin up to 1.13.0 on WordPress vendor_id sql injection

CVE-2024-34091 | Archer Platform prior 2024.04 Trusted Application Data Store cross site scripting

CVE-2025-47550 | Themefic Instantio Plugin up to 3.3.16 on WordPress unrestricted upload