CVE-2025-13054 | User Profile Builder Plugin up to 3.14.8 on WordPress Shortcode cross site scripting

A vulnerability classified as problematic has been found in User Profile Builder Plugin up to 3.14.8 on WordPress. This impacts an unknown function of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-13054. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More