CVE-2025-13537 | Live Composer Plugin up to 2.0.2 on WordPress cross site scripting

December 17, 2025 Yanac

A vulnerability described as problematic has been identified in Live Composer Plugin up to 2.0.2 on WordPress. Affected by this issue is some unknown functionality. Executing manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2025-13537. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

UK insists US tech deal not dead as Trump threatens penalties against European firms
CVE-2025-13217 | Ultimate Member Plugin up to 2.11.0 on WordPress um_profile_field_filter_hook__youtube_video Value cross site scripting