CVE-2025-14657 | Eventin Plugin up to 4.0.51 on WordPress Setting post_settings cross site scripting

A vulnerability described as problematic has been identified in Eventin Plugin up to 4.0.51 on WordPress. The impacted element is the function post_settings of the component Setting Handler. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-14657. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More