CVE-2025-13738 | Easy Table of Contents Plugin up to 2.0.78 on WordPress Shortcode ez-toc cross site scripting

A vulnerability, which was classified as problematic, has been found in Easy Table of Contents Plugin up to 2.0.78 on WordPress. The affected element is the function ez-toc of the component Shortcode Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2025-13738. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More