VYPR

Simple Business Data

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-11870MedOct 22, 2025
    risk 0.42cvss 6.4epss 0.00

    The Simple Business Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'simple_business_data' shortcode attributes in all versions up to, and including, 1.0.1. This is due to the plugin not properly sanitizing user input or escaping output when embedding…