CVE-2025-13525 | WP Directory Kit Plugin up to 1.4.5 on WordPress order_by cross site scripting

A vulnerability marked as problematic has been reported in WP Directory Kit Plugin up to 1.4.5 on WordPress. Affected by this issue is some unknown functionality. This manipulation of the argument order_by causes cross site scripting.

This vulnerability is handled as CVE-2025-13525. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More