Ebook Store, CVE-2025-8113

CVE, Research URL: CVE-2025-8113
Home page URL: Security reports for Ebook Store
Application: Ebook Store
Published on: Aug 16, 2025
Research Description: The Ebook Store WordPress plugin before 5.8015 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers.
Affected versions: Min -, max 5.8015.
Status: vulnerable