Cross-site Scripting Vulnerability in bbPress Move Topics Plugin by Pascal Casier
CVE-2025-49959
7.1HIGH
What is CVE-2025-49959?
The bbPress Move Topics plugin developed by Pascal Casier is susceptible to a Cross-site Scripting (XSS) vulnerability. This flaw allows an attacker to inject malicious scripts into web pages viewed by users, leading to potential exploitation through reflected XSS attacks. Users of bbPress Move Topics versions up to 1.1.6 are recommended to update to avoid possible security risks associated with this vulnerability.
Affected Version(s)
bbPress Move Topics <= n/a