CVE-2025-12754 | Geopost Plugin up to 1.2 on WordPress Shortcode geopost height cross site scripting

A vulnerability classified as problematic has been found in Geopost Plugin up to 1.2 on WordPress. Impacted is the function geopost of the component Shortcode Handler. Performing manipulation of the argument height results in cross site scripting.

This vulnerability was named CVE-2025-12754. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More