Overview A stored Cross-Site Scripting (XSS) vulnerability has been discovered in the BrightTALK WordPress Shortcode plugin, identified as CVE-2025-11770. This vulnerability affects versions up to and including 2.4.0 of the plugin. It allows authenticated attackers with contributor-level access or higher to inject malicious JavaScript code into WordPress pages. This injected code will then execute whenever a user visits the compromised page, potentially leading to account compromise, data theft, or other malicious activities. Technical Details The vulnerability lies within the brighttalk-time shortcode, specifically in the format attribute. The plugin fails to properly sanitize user-supplied input for the format attribute and doesn’t…
-
-
Overview A Stored Cross-Site Scripting (XSS) vulnerability has been discovered in the Islamic Phrases plugin for WordPress, identified as CVE-2025-11768. This vulnerability affects all versions up to and including 2.12.2015. Exploitation of this flaw could allow attackers to inject malicious JavaScript code into your WordPress site, potentially compromising user accounts and data. Technical Details The vulnerability stems from insufficient input sanitization and output escaping within the ‘phrases’ shortcode attribute. Specifically, the plugin does not properly sanitize user-supplied input passed through the phrases shortcode attribute before rendering it on a page. This allows authenticated attackers with contributor-level access or higher to…
-
Overview CVE-2025-11767 is a Stored Cross-Site Scripting (XSS) vulnerability affecting the Tips Shortcode plugin for WordPress. This vulnerability exists in all versions up to, and including, 0.2.1. It allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages or posts. When a user visits a page containing the injected script, the script will execute in their browser, potentially leading to account compromise, data theft, or other malicious actions. Technical Details The vulnerability stems from insufficient input sanitization and output escaping within the ‘tip’ shortcode of the Tips Shortcode plugin. Specifically, the plugin fails to properly…
-
Overview A stored Cross-Site Scripting (XSS) vulnerability, identified as CVE-2025-11765, has been discovered in the Stock Tools plugin for WordPress. All versions up to and including 1.1 are affected. This vulnerability allows authenticated attackers with contributor-level access or higher to inject malicious JavaScript code into pages. When a user visits a page containing the injected script, the script executes, potentially leading to session hijacking, account compromise, or defacement of the website. Technical Details The vulnerability stems from insufficient input sanitization and output escaping of the image_height and image_width shortcode attributes. Specifically, the Stock Tools plugin fails to properly validate or…
-
Overview A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Shortcodes Bootstrap plugin for WordPress, tracked as CVE-2025-11764. This vulnerability affects all versions up to and including 1.1 of the plugin. It allows authenticated attackers with contributor-level access or higher to inject malicious JavaScript code into website pages. This injected code can then execute in the browsers of unsuspecting users who visit the compromised pages. Technical Details The vulnerability resides within the [notification] shortcode functionality provided by the Shortcodes Bootstrap plugin. Specifically, the type parameter within this shortcode lacks proper input sanitization and output escaping. This means that…
-
Overview CVE-2025-11763 details a stored Cross-Site Scripting (XSS) vulnerability found in the Display Pages Shortcode plugin for WordPress. This flaw affects all versions up to and including 1.1. The vulnerability allows authenticated attackers with contributor-level access or higher to inject malicious JavaScript code into pages. When unsuspecting users visit these compromised pages, the injected scripts execute, potentially leading to account compromise, data theft, or defacement of the website. Technical Details The vulnerability resides in the handling of the column_count parameter within the [display-pages] shortcode. Specifically, the plugin fails to adequately sanitize user-supplied input provided to the column_count parameter. This unsanitized…
-
Overview This article addresses a critical security vulnerability, identified as CVE-2025-11456, affecting the ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress. Versions up to and including 3.3.1 are vulnerable to an arbitrary file upload flaw. This vulnerability allows unauthenticated attackers to upload malicious files to the server, potentially leading to remote code execution and complete compromise of the affected website. Technical Details The vulnerability stems from a lack of proper file type validation within the eh_crm_new_ticket_post() function. The plugin fails to adequately check the file extension or content of uploaded files, allowing attackers to bypass intended security measures.…
-
Overview CVE-2025-11003 is a medium-severity vulnerability affecting the UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress. This security flaw allows authenticated attackers with Subscriber-level access or higher to inject and save templates containing custom JavaScript. The vulnerability exists due to a missing capability check on the uip_save_ui_template function within the plugin. This vulnerability impacts versions up to, and including, 3.5.08 of the UiPress Lite plugin. Technical Details The vulnerability resides in the uip_save_ui_template function within the UiPress Lite plugin. Specifically, the code lacks a proper capability check before allowing users to save UI templates. This…
-
Overview A medium severity vulnerability, identified as CVE-2025-10938, has been discovered in the UiPress Lite plugin for WordPress. This vulnerability affects all versions up to and including 3.5.08. It allows authenticated attackers with subscriber-level access (or higher) to potentially extract sensitive user data, putting WordPress sites at risk. Technical Details The vulnerability lies in the ‘uip_process_block_query’ AJAX function within the UiPress Lite plugin. The issue stems from missing capability checks, allowing authenticated users, even those with minimal privileges like ‘subscriber’, to trigger this function and gain access to unauthorized information. Specifically, the lack of proper authorization checks allows attackers to…
-
Overview CVE-2025-64695 describes a critical security vulnerability found in the installer for LogStare Collector (for Windows). This vulnerability is categorized as an uncontrolled search path element issue, meaning that the installer doesn’t properly control the locations it searches for necessary files. If successfully exploited, this flaw could allow an attacker to execute arbitrary code with the same privileges as the user running the installer. This poses a significant risk to system security and data integrity. Technical Details The vulnerability stems from the way the LogStare Collector installer searches for and loads DLL (Dynamic Link Library) files. Due to the uncontrolled…