CVE-2025-13308 | Application Passwords Plugin up to 0.1.3 on WordPress reject_url cross site scripting

A vulnerability identified as problematic has been detected in Application Passwords Plugin up to 0.1.3 on WordPress. This affects an unknown function. The manipulation of the argument reject_url leads to cross site scripting.

This vulnerability is referenced as CVE-2025-13308. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More