CVE-2025-13728 | FluentAuth Plugin up to 2.0.3 on WordPress Shortcode fluent_auth_reset_password cross site scripting

A vulnerability was found in FluentAuth Plugin up to 2.0.3 on WordPress and classified as problematic. The affected element is the function fluent_auth_reset_password of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-13728. The attack can be launched remotely. No exploit exists.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.VulDB Recent EntriesRead More