CVE-2025-13959 | Filestack Plugin up to 2.0.8 on WordPress Shortcode cross site scripting

February 17, 2026 Yanac

A vulnerability described as problematic has been identified in Filestack Plugin up to 2.0.8 on WordPress. This impacts an unknown function of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2025-13959. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-12122 | Popup Box Plugin up to 3.2.12 on WordPress Shortcode iframeBox cross site scripting
CVE-2026-1639 | Taskbuilder Plugin up to 5.0.2 on WordPress sort_by sql injection