CVE-2025-9061 | Wilmer Core Plugin up to 2.4.5 on WordPress Shortcode cross site scripting

September 8, 2025 Yanac

A vulnerability labeled as problematic has been found in Wilmer Core Plugin up to 2.4.5 on WordPress. This affects an unknown part of the component Shortcode Handler. Executing manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2025-9061. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-9058 | Mikado Core Plugin up to 1.5.2 on WordPress Shortcode cross site scripting
CVE-2025-9542 | AutomatorWP Plugin up to 5.3.7 on WordPress Setting authorization