CVE-2025-8290 | List Subpages Plugin up to 1.0.6 on WordPress Title cross site scripting

August 28, 2025 Yanac

A vulnerability classified as problematic has been found in List Subpages Plugin up to 1.0.6 on WordPress. Affected by this issue is some unknown functionality. This manipulation of the argument Title causes cross site scripting.

This vulnerability is tracked as CVE-2025-8290. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

High-severity vulnerability in Passwordstate credential manager. Patch now.
CVE-2025-8147 | LWSCache Plugin up to 2.8.5 on WordPress Plugin Activation lwscache_activatePlugin authorization