cleantalk
Vulnerabilities and Security Researches

ClipArt, CVE-2024-12726

CVE, Research URL

CVE-2024-12726

Home page URL

Security reports for ClipArt

Application

ClipArt

Published on
May 16, 2025
Research Description
The ClipArt WordPress plugin through 0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.
Affected versions
Min -, max 0.2.
Status
vulnerable
Previous vulnerability researches
Accordion Slider Lite (CVE-2024-11892) , Jan 12, 2025
Accordion Slider (CVE-2024-9582) , Oct 17, 2024
Accordion Slider (a2445cf94cd548f02bbbcd9e1cbd090255c550ed) , Jun 07, 2024
Accordion Slider (CVE-2023-40331) , Jun 10, 2024
Accordion Slider (CVE-2024-5020) , Dec 07, 2024
New vulnerability
Podlove Podcast Publisher (CVE-2024-13730) , May 17, 2025
Podlove Podcast Publisher (CVE-2024-13729) , May 17, 2025
VikBooking Hotel Booking Engine & PMS (CVE-2024-13616) , May 17, 2025
WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden (CVE-2025-32922) , May 17, 2025
Posts per Cat [Unmaintained] (CVE-2025-4169) , May 17, 2025