CVE-2025-12672 | Flickr Show Plugin up to 1.5 on WordPress Shortcode flickrshow div_height cross site scripting

A vulnerability was found in Flickr Show Plugin up to 1.5 on WordPress. It has been rated as problematic. This affects the function flickrshow of the component Shortcode Handler. The manipulation of the argument div_height leads to cross site scripting.

This vulnerability is documented as CVE-2025-12672. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More