IRM Newsroom

Vulnerabilities 3Slug irm-newsroomLatest version 1.2.22WordPress.org →

Minimum safe version

1.2.20

Update to 1.2.20 or later to address 3 fixable vulnerabilities

Latest available1.2.22
Medium 6.4
2025-06-13< 1.2.20

IRM Newsroom <= 1.2.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'irmeventlist' Shortcode

EUVDWordfenceCVE
Medium 6.4
2025-06-13< 1.2.20

IRM Newsroom <= 1.2.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'irmcalendarview' Shortcode

EUVDWordfenceCVE
Medium 6.4
2025-06-13< 1.2.20

WordPress IRM Newsroom Plugin <= 1.2.17 is vulnerable to Cross Site Scripting (XSS)

PatchstackEUVDWordfenceCVE