CVE-2025-2537 — Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled ThickBox JavaScript library (version 3.1) in various versions due to insufficient input saniti — CVE Database · The Intelligence Room