WordPress Insert Headers and Footers Code – HT Script plugin <= 1.1.6 - Authenticated (Author+) Stored Cross-Site Scripting vulnerability

Authenticated Author+ Stored Cross-Site Scripting vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Insert Headers and Footers Code – HT Script versions = 1.1.6...

CVE-2025-12112

The Insert Headers and Footers Code – HT Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via adding scripts in all versions up to, and including, 1.1.6 due to insufficient capability checks. This makes it possible for authenticated attackers, with Author-level access and...

PT-2025-45547

Name of the Vulnerable Software and Affected Versions Insert Headers and Footers Code – HT Script plugin for WordPress versions prior to 1.1.7 Description The Insert Headers and Footers Code – HT Script plugin for WordPress is susceptible to Stored Cross-Site Scripting. This occurs because of...

WordPress plugin Insert Headers and Footers Code – HT Script 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...