CVE-2025-66111 | Nelio Popups Plugin up to 1.3.0 on WordPress cross site scripting

November 21, 2025 Yanac

A vulnerability identified as problematic has been detected in Nelio Popups Plugin up to 1.3.0 on WordPress. The affected element is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-66111. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-11087 | Zegen Core Plugin up to 2.0.1 on WordPress custom-fonts-uploads.php cross-site request forgery
CVE-2025-66097 | Igor Jerosimić I Order Terms Plugin up to 1.5.0 on WordPress cross-site request forgery