CVE-2025-13899 | TR Timthumb Plugin up to 1.0.4 on WordPress Shortcode cross site scripting

A vulnerability was found in TR Timthumb Plugin up to 1.0.4 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-13899. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More