CVE-2025-8113

The Ebook Store WordPress plugin before 5.8015 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers.
CVSS

No CVSS.

Configurations

No configuration.

History

16 Aug 2025, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-08-16 06:15

Updated : 2025-08-16 06:15


NVD link : CVE-2025-8113

Mitre link : CVE-2025-8113

CVE.ORG link : CVE-2025-8113


JSON object : View

Products Affected

No product.

CWE

No CWE.