CVE-2025-64204 | ThemeSphere SmartMag Plugin up to 10.3.1 on WordPress cross site scripting

October 29, 2025 Yanac

A vulnerability labeled as problematic has been found in ThemeSphere SmartMag Plugin up to 10.3.1 on WordPress. This affects an unknown function. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-64204. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-64201 | blubrry PowerPress Podcasting Plugin up to 11.13.12 on WordPress cross-site request forgery
CVE-2025-64289 | Premmerce Product Search for WooCommerce Plugin up to 2.2.4 on WordPress cross site scripting (EUVD-2025-36606)