CVE-2025-12186 | Weekly Planner Plugin up to 1.0 on WordPress Setting cross site scripting

December 5, 2025 Yanac

A vulnerability categorized as problematic has been discovered in Weekly Planner Plugin up to 1.0 on WordPress. Affected is an unknown function of the component Setting Handler. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-12186. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-12373 | Torod Plugin up to 1.9 on WordPress Setting save_settings cross-site request forgery
CVE-2025-12124 | FitVids Plugin up to 4.0.1 on WordPress Setting cross site scripting