CVE-2025-23835 | Legal+ Plugin up to 1.0 on WordPress cross site scripting
CVE-2025-23835 | Legal+ Plugin up to 1.0 on WordPress cross site scripting
A vulnerability was found in Legal+ Plugin up to 1.0 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-23835. The attack may be initiated remotely. There is no exploit available.Son Yazılar
- Malwarebytes introduces native ARM support for Windows devices
- Google now allows digital fingerprinting of its users
- Macs targeted by info stealers in new era of cyberthreats
- New Snake Keylogger Variant Leverages AutoIt Scripting to Evade Detection
- CVE-2025-0916 | yaycommerce YaySMTP and Email Logs Plugin up to 2.6.2 on WordPress Any SMTP Service wp_kses_post cross site scripting
- CVE-2024-13534 | enituretechnology Small Package Quotes Plugin up to 5.2.18 on WordPress edit_id/dropship_edit_id sql injection
- CVE-2024-13533 | enituretechnology Small Package Quotes Plugin up to 1.3.5 on WordPress edit_id sql injection
- CVE-2025-0968 | xpeedstudio ElementsKit Elementor Addons Plugin up to 3.4.0 on WordPress get_megamenu_content access control
- CVE-2024-13491 | enituretechnology Small Package Quotes Plugin up to 4.3.1 on WordPress edit_id/dropship_edit_id sql injection
- CVE-2024-13485 | enituretechnology LTL Freight Quotes Plugin up to 3.3.7 on WordPress edit_id/dropship_edit_id sql injection