Oscaruribe Ungapped Widgets
1 CVEs affecting Oscaruribe Ungapped Widgets. Latest disclosed: 2025-11-11. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-12652 | Medium | 6.4 | 2025-11-11 | The Ungapped Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'prefillvalues' parameter in the ungapped-form shortcode in all… |