CVE-2025-13898 | Ultra Skype Button Plugin up to 1.0 on WordPress Shortcode ultra_skype btn_id cross site scripting

A vulnerability has been found in Ultra Skype Button Plugin up to 1.0 on WordPress and classified as problematic. This affects the function ultra_skype of the component Shortcode Handler. The manipulation of the argument btn_id leads to cross site scripting.

This vulnerability is traded as CVE-2025-13898. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More