CVE-2025-9849 | Html Social Share Buttons Plugin up to 2.1.16 on WordPress Shortcode zm_sh_btn cross site scripting

A vulnerability was found in Html Social Share Buttons Plugin up to 2.1.16 on WordPress. It has been rated as problematic. Affected by this vulnerability is the function zm_sh_btn of the component Shortcode Handler. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-9849. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More