CVE-2025-11873 | WP BBCode Plugin up to 1.8.1 on WordPress Shortcode url cross site scripting

A vulnerability, which was classified as problematic, was found in WP BBCode Plugin up to 1.8.1 on WordPress. This affects the function url of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-11873. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More