CVE-2025-12135 | WPBookit Plugin up to 1.0.6 on WordPress save_custome_code css_code cross site scripting

A vulnerability was found in WPBookit Plugin up to 1.0.6 on WordPress. It has been declared as problematic. The impacted element is the function save_custome_code. Such manipulation of the argument css_code leads to cross site scripting.

This vulnerability is traded as CVE-2025-12135. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More