CVE-2025-13893 | Lesson Plan Book Plugin up to 1.3 on WordPress $_SERVER[‘PHP_SELF’] cross site scripting

A vulnerability labeled as problematic has been found in Lesson Plan Book Plugin up to 1.3 on WordPress. This affects an unknown part. Executing a manipulation of the argument $_SERVER[‘PHP_SELF’] can lead to cross site scripting.

This vulnerability is registered as CVE-2025-13893. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More