CVE-2025-12645 | Inline Frame Plugin up to 0.1 on WordPress Shortcode cross site scripting

A vulnerability was found in Inline Frame Plugin up to 0.1 on WordPress. It has been declared as problematic. The impacted element is an unknown function of the component Shortcode Handler. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-12645. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More