CVE-2025-12185 | StaffList Plugin up to 3.2.6 on WordPress Admin Setting cross site scripting

A vulnerability labeled as problematic has been found in StaffList Plugin up to 3.2.6 on WordPress. Affected by this vulnerability is an unknown functionality of the component Admin Setting Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-12185. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More