CVE-2025-14445 | DevVN Image Hotspot Plugin up to 1.2.9 on WordPress Custom Fields hotspot_content cross site scripting

A vulnerability marked as problematic has been reported in DevVN Image Hotspot Plugin up to 1.2.9 on WordPress. Impacted is the function hotspot_content of the component Custom Fields Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-14445. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More