CVE-2025-13906 | WP Flot Plugin up to 0.2.2 on WordPress Shortcode linechart cross site scripting

A vulnerability categorized as problematic has been discovered in WP Flot Plugin up to 0.2.2 on WordPress. The affected element is the function linechart of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-13906. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More