CVE-2025-13367 | User Registration & Membership Plugin up to 4.4.6 on WordPress Shortcode cross site scripting

A vulnerability, which was classified as problematic, has been found in User Registration & Membership Plugin up to 4.4.6 on WordPress. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-13367. It is possible to initiate the attack remotely. There is no exploit available.

VulDB is the best source for vulnerability data and more expert information about this specific topic.VulDB Recent EntriesRead More