CVE-2025-12661 | Pollcaster Shortcode Plugin up to 1.0 on WordPress pollcaster height cross site scripting

A vulnerability labeled as problematic has been found in Pollcaster Shortcode Plugin up to 1.0 on WordPress. Affected by this vulnerability is the function pollcaster of the component Shortcode Handler. The manipulation of the argument height results in cross site scripting.

This vulnerability was named CVE-2025-12661. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More