CVE-2025-64633 | colabrio Norebro Extra Plugin up to 1.6.8 on WordPress cross site scripting

December 16, 2025 Yanac

A vulnerability, which was classified as problematic, was found in colabrio Norebro Extra Plugin up to 1.6.8 on WordPress. This affects an unknown function. Such manipulation leads to basic cross site scripting.

This vulnerability is traded as CVE-2025-64633. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-67962 | AIOSEO Broken Link Checker Plugin up to 1.2.6 on WordPress sql injection
CVE-2025-68088 | merkulove Huger for Elementor Plugin up to 1.1.5 on WordPress authorization