Vulnerabilities and Security Researches

Vulnerabilities and security researches forwpcomplete wpcomplete

Direction: descending

Nov 11, 2025

WPComplete # CVE-2025-49906

CVE, Research URL: CVE-2025-49906
Home page URL: Security reports for WPComplete
Application: WPComplete
Date: Oct 22, 2025
Research Description: Missing Authorization vulnerability in StellarWP WPComplete wpcomplete allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPComplete: from n/a through <= 2.9.5.3.
Affected versions: max 2.9.5.3.
Status: vulnerable

Jul 02, 2025

WPComplete # CVE-2025-50046

CVE, Research URL: CVE-2025-50046
Home page URL: Security reports for WPComplete
Application: WPComplete
Date: Jun 20, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StellarWP WPComplete allows Stored XSS. This issue affects WPComplete: from n/a through 2.9.5.
Affected versions: max 2.9.5.
Status: vulnerable

Jun 07, 2024

WPComplete # CVE-2022-45825

CVE, Research URL: CVE-2022-45825
Home page URL: Security reports for WPComplete
Application: WPComplete
Date: Mar 28, 2023
Research Description: Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in iThemes WPComplete plugin <= 2.9.2 versions.
Affected versions: max 2.9.5.
Status: vulnerable