CVE-2025-13206 | GiveWP Plugin up to 4.13.0 on WordPress Name cross site scripting

November 19, 2025 Yanac

A vulnerability described as problematic has been identified in GiveWP Plugin up to 4.13.0 on WordPress. This vulnerability affects unknown code. Such manipulation of the argument Name leads to cross site scripting.

This vulnerability is listed as CVE-2025-13206. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-12484 | RafflePress Giveaways and Contests Plugin up to 1.12.19 on WordPress Username cross site scripting
CVE-2025-13225 | Tanium TanOS prior 1.8.4.0229/1.8.5.0262 denial of service (TAN-2025-036)