Security Advisory

CVE-2025-9512

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-01 06:00:02

Last updated 2025-10-01 14:59:13

Assigner WPScan

State PUBLISHED

Description

The Schema & Structured Data for WP & AMP WordPress plugin before 1.50 does not properly handles HTML tag attribute modifications, making it possible for unauthenticated attackers to conduct Stored XSS attacks via post comments.

← Browse all CVEs View on cve.org ↗