Oscaruribe Ungapped Widgets

1 CVEs affecting Oscaruribe Ungapped Widgets. Latest disclosed: 2025-11-11. Critical: 0, High: 0.

Top CVEs affecting Oscaruribe Ungapped Widgets
CVESeverityScorePublishedSummary
CVE-2025-12652Medium6.42025-11-11The Ungapped Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'prefillvalues' parameter in the ungapped-form shortcode in all…