CVE-2025-12670 | wp-twitpic Plugin up to 1.0 on WordPress Shortcode cross site scripting

A vulnerability described as problematic has been identified in wp-twitpic Plugin up to 1.0 on WordPress. The impacted element is the function twitpic of the component Shortcode Handler. Executing manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2025-12670. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More