CVE-2025-7808 Information
Aug 15, 2025
cve
Description
The WP Shopify WordPress plugin before 1.5.4 does not sanitise and escape a parameter before outputting it back in the page leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Reference
https://wpscan.com/vulnerability/fa199423-6526-47f6-bab5-9f6dff0f236a/
Related CNNVD
CNNVD-202508-1494 (Published: 2025-08-14)
Share on: