CVE-2025-14056 | Custom Post Type UI Plugin up to 1.18.1 on WordPress Import label cross site scripting

A vulnerability categorized as problematic has been discovered in Custom Post Type UI Plugin up to 1.18.1 on WordPress. This vulnerability affects unknown code of the component Import Handler. Such manipulation of the argument label leads to cross site scripting.

This vulnerability is listed as CVE-2025-14056. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More