CVE-2025-8080
CVE-2025-8080 describes a Stored Cross-Site Scripting (XSS) flaw in the WordPress plugin Alobaidi Captcha (versions up to 1.0.3). The issue stems from insufficient input sanitization and output escaping in the plugin settings, enabling - for authenticated users with administrator-level permission...