Vulnerabilities and security researches forposts-table-filterable posts-table-filterable

Jun 07, 2024

CVE, Research URL: 3baac97a62718d22a0676a3b26aea087baf75743
Home page URL: Security reports for TableOn – WordPress Posts Table Filterable
Application: TableOn – WordPress Posts Table Filterable
Date: Sep 29, 2021
Research Description: TableOn – WordPress Posts Table Filterable [posts-table-filterable] < 1.0.1 WordPress TableOn – WordPress Posts Table Filterable plugin <= 1.0.0 - Reflected Cross-Scripting (XSS) vulnerability Reflected Cross-Scripting (XSS) vulnerability discovered in WordPress TableOn – WordPress Posts Table Filterable plugin (versions <= 1.0.0).
Affected versions: Min -, max -.
Status: vulnerable

Apr 06, 2025

CVE, Research URL: CVE-2025-32218
Home page URL: Security reports for TableOn – WordPress Posts Table Filterable
Application: TableOn – WordPress Posts Table Filterable
Date: Apr 04, 2025
Research Description: Missing Authorization vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects TableOn – WordPress Posts Table Filterable: from n/a through 1.0.4.
Affected versions: Min -, max -.
Status: vulnerable

Apr 13, 2025

CVE, Research URL: CVE-2025-32569
Home page URL: Security reports for TableOn – WordPress Posts Table Filterable
Application: TableOn – WordPress Posts Table Filterable
Date: Apr 11, 2025
Research Description: Deserialization of Untrusted Data vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable allows Object Injection. This issue affects TableOn – WordPress Posts Table Filterable: from n/a through 1.0.2.
Affected versions: Min -, max -.
Status: vulnerable

Apr 19, 2025

CVE, Research URL: CVE-2025-32592
Home page URL: Security reports for TableOn – WordPress Posts Table Filterable
Application: TableOn – WordPress Posts Table Filterable
Date: Apr 17, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable allows Stored XSS. This issue affects TableOn – WordPress Posts Table Filterable: from n/a through 1.0.3.
Affected versions: Min -, max -.
Status: vulnerable

Jul 03, 2025

CVE, Research URL: CVE-2025-5143
Home page URL: Security reports for TableOn – WordPress Posts Table Filterable
Application: TableOn – WordPress Posts Table Filterable
Date: Jun 21, 2025
Research Description: The TableOn – WordPress Posts Table Filterable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's tableon_popup_iframe_button shortcode in all versions up to, and including, 1.0.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions: Min -, max -.
Status: vulnerable