CVE-2025-12671 | WP-Iconics Plugin up to 0.0.4 on WordPress Shortcode wp_iconics cross site scripting

A vulnerability labeled as problematic has been found in WP-Iconics Plugin up to 0.0.4 on WordPress. This affects the function wp_iconics of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-12671. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More