CVE-2025-12935 | FluentCRM Plugin up to 2.9.84 on WordPress Shortcode fluentcrm_content cross site scripting

November 21, 2025 Yanac

A vulnerability was found in FluentCRM Plugin up to 2.9.84 on WordPress. It has been rated as problematic. Affected by this vulnerability is the function fluentcrm_content of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-12935. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More