CVE-2025-8317
CVE-2025-8317 concerns the WordPress plugin Custom Word Cloud. The vulnerability is a stored XSS via the angle parameter in all versions up to 0.3, exploitable by authenticated users with Contributor+ access, potentially causing scripts to run when pages are loaded by other users. Public sources ...