CVE-2025-14449 | BA Book Everything Plugin up to 1.8.14 on WordPress Shortcode babe-search-form cross site scripting

A vulnerability has been found in BA Book Everything Plugin up to 1.8.14 on WordPress and classified as problematic. This affects the function babe-search-form of the component Shortcode Handler. Performing manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-14449. Remote exploitation of the attack is possible. No exploit is available.

Once again VulDB remains the best source for vulnerability data.VulDB Recent EntriesRead More