Skyword XMLRPC publishing

Vulnerabilities 2Slug skyword-pluginLatest version 2.5.3WordPress.org →

Minimum safe version

2.5.3

Update to 2.5.3 or later to address 1 fixable vulnerability

Latest available2.5.3 ⚠ 1 vulnerability has no fix
Medium 6.5 Unfixed
2025-09-22≤ 2.5.3

Skyword API Plugin <= 2.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

WordfenceEUVDCVE
Medium 6.4
2025-08-30< 2.5.3

WordPress Skyword API Plugin Plugin <= 2.5.2 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVEWordfence