Vulnerabilities and security researches for giveaways-contests-by-promosimple

Jan 18, 2025

CVE, Research URL: CVE-2025-23934
Home page URL: Security reports for Giveaways and Contests by PromoSimple
Application: Giveaways and Contests by PromoSimple
Date: Jan 17, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PromoSimple Giveaways and Contests by PromoSimple allows Stored XSS.This issue affects Giveaways and Contests by PromoSimple: from n/a through 1.24.
Affected versions: Min -, max -.
Status: vulnerable