Cross-site Scripting Vulnerability in Meks Flexible Shortcodes by Meks
CVE-2025-47621
6.5MEDIUM
What is CVE-2025-47621?
The Meks Flexible Shortcodes plugin is susceptible to a Cross-site Scripting (XSS) vulnerability that permits attackers to inject malicious scripts through unsanitized input during web page generation. This vulnerability can lead to stored XSS, allowing unauthorized access to user sessions and sensitive information. It is crucial for users of Meks Flexible Shortcodes, particularly those using versions from n/a to 1.3.6, to implement immediate security measures to mitigate potential exploitation. Regular updates and security practices are essential to safeguard against these types of vulnerabilities.
Affected Version(s)
Meks Flexible Shortcodes <= 1.3.6