CVE-2025-58654 | xiligroup xili-language Plugin up to 2.21.3 on WordPress cross site scripting

September 22, 2025 Yanac

A vulnerability classified as problematic was found in xiligroup xili-language Plugin up to 2.21.3 on WordPress. Impacted is an unknown function. Executing manipulation can lead to cross site scripting.

This vulnerability appears as CVE-2025-58654. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-58659 | Essekia Helpie FAQ Plugin up to 1.39 on WordPress hard-coded credentials
CVE-2025-58652 | Themepoints Carousel Ultimate Plugin up to 1.8 on WordPress cross site scripting