cleantalk
Vulnerabilities and Security Researches

a3 Portfolio, CVE-2023-29097

CVE, Research URL

CVE-2023-29097

Home page URL

Security reports for a3 Portfolio

Application

a3 Portfolio

Published on
Aug 14, 2023
Research Description
Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in a3rev Software a3 Portfolio plugin <= 3.1.0 versions.
Affected versions
max 3.1.1.
Status
vulnerable
Previous vulnerability researches
a3 Portfolio (d1b0f784da3ca0f399c542515fda1423816819f0) , Jun 07, 2024
a3 Portfolio (CVE-2023-29097) , Jun 07, 2024
New vulnerability
Restrict User Registration (CVE-2025-9892) , Apr 25, 2026
SnapWidget Social Photo Feed Widget (CVE-2025-58241) , Apr 25, 2026
Cozy Blocks &#8211; Page Builder Blocks for FSE and Gutenberg Editor, Gutenberg Blocks, WooCommerce Blocks, Post Blocks, Slider (CVE-2025-59573) , Apr 25, 2026
JoomSport &#8211; for Sports: Team &amp; League, Football, Hockey &amp; more (CVE-2025-7721) , Apr 25, 2026
World first Lifetime free Form Builder for WordPress (CVE-2025-58957) , Apr 25, 2026