What is the CVSS score of EUVD-2025-200072?

EUVD-2025-200072 has a CVSS 3.1 base score of 6.5 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L. EPSS exploitation probability: 0.0%.

Which versions of Tyche Softwares Arconix Shortcodes are affected by EUVD-2025-200072?

CVE-2025-13835 presents notable security risk, a cross-site scripting vulnerability rated CVSS 6.5. Attackers could inject scripts to steal sessions or perform actions as authenticated users.

Is there a public PoC exploit available for EUVD-2025-200072?

Yes, a public proof-of-concept exploit is available for EUVD-2025-200072. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate EUVD-2025-200072?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Verify Content-Security-Policy and output encoding.

Tyche Softwares Arconix Shortcodes EUVD-2025-200072

| CVE-2025-13835 MEDIUM

Cross-site Scripting (XSS) (CWE-79)

2025-12-01 audit@patchstack.com

XSS

6.5

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

6.5 MEDIUM

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

Low

Lifecycle Timeline

PoC Detected

Apr 01, 2026 - 16:21 vuln.today

Public exploit code

EUVD ID Assigned

Mar 15, 2026 - 13:34 euvd

EUVD-2025-200072

Analysis Generated

Mar 15, 2026 - 13:34 vuln.today

CVE Published

Dec 01, 2025 - 18:16 nvd

MEDIUM 6.5

DescriptionCVE.org

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tyche Softwares Arconix Shortcodes allows Stored XSS.This issue affects Arconix Shortcodes: from n/a through 2.1.19.

Analysis

EUVD-2025-200072 vulnerability details – vuln.today

Back