CVE-2025-63588 | CMSimple_XH CMSimpleXH cross site scripting

November 6, 2025 Yanac

A vulnerability labeled as problematic has been found in CMSimple_XH. This affects an unknown function of the component CMSimpleXH Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-63588. It is possible to launch the attack remotely. Furthermore, an exploit is available.VulDB Recent EntriesRead More

CVE-2025-5483 | LC Wizard Plugin up to 1.3.0 on WordPress wp_user.php authorization
CVE-2025-64232 | icopydoc Import from YML Plugin up to 3.1.17 on WordPress cross site scripting