PT-2025-38871 · Unknown · List Child Pages Shortcode
Published
2025-09-22
·
Updated
2025-09-22
·
CVE-2025-58021
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
douglaskarr List Child Pages Shortcode versions through 1.3.1
Description
The software contains a flaw due to improper handling of input during the creation of web pages, specifically a Cross-site Scripting issue. This allows for Stored XSS, where malicious scripts can be stored and executed within the application. The issue is present in the List Child Pages Shortcode.
Recommendations
Update to a version later than 1.3.1.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
List Child Pages Shortcode