CVE-2025-12746 | Tainacan Plugin up to 1.0.0 on WordPress Search cross site scripting

November 21, 2025 Yanac

A vulnerability was found in Tainacan Plugin up to 1.0.0 on WordPress. It has been classified as problematic. The affected element is an unknown function. This manipulation of the argument Search causes cross site scripting.

This vulnerability appears as CVE-2025-12746. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-12135 | WPBookit Plugin up to 1.0.6 on WordPress save_custome_code css_code cross site scripting
CVE-2025-10039 | ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin eh_crm_ticket_single_view_client resource injection