CVE-2025-13839 | LJUsers Plugin up to 1.2.0 on WordPress Shortcode Name cross site scripting

A vulnerability classified as problematic was found in LJUsers Plugin up to 1.2.0 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. Such manipulation of the argument Name leads to cross site scripting.

This vulnerability is referenced as CVE-2025-13839. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More