Cross-site Scripting Vulnerability in Font Awesome WP by Farjana55
CVE-2025-26567
6.5MEDIUM
What is CVE-2025-26567?
The Font Awesome WP plugin by Farjana55 is susceptible to a Cross-site Scripting (XSS) vulnerability, where inadequate sanitization of input can lead to DOM-based XSS attacks. This vulnerability could allow attackers to inject malicious scripts, potentially compromising user interactions and overall site integrity. All versions up to 1.0 are affected, posing a significant risk for WordPress websites utilizing this plugin.
Affected Version(s)
Font Awesome WP <= 1.0