CVE-2025-7726 | Dream-Theme The7 Plugin up to 12.6.0 on WordPress jQuery.attr title/data-dt-img-description cross site scripting (EUVD-2025-24051)

A vulnerability classified as problematic has been found in Dream-Theme The7 Plugin up to 12.6.0 on WordPress. This affects the function jQuery.attr. The manipulation of the argument title/data-dt-img-description leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-7726. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More