CVE-2025-7651 | Earnware Connect Plugin up to 1.0.73 on WordPress Shortcode ew_hasrole cross site scripting

A vulnerability was found in Earnware Connect Plugin up to 1.0.73 on WordPress. It has been rated as problematic. Affected by this issue is the function ew_hasrole of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-7651. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More