cleantalk
Vulnerabilities and Security Researches

Accounting for WooCommerce, CVE-2025-26929

CVE, Research URL

CVE-2025-26929

Home page URL

Security reports for Accounting for WooCommerce

Application

Accounting for WooCommerce

Published on
Mar 26, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NOUS Ouvert Utile et Simple Accounting for WooCommerce allows Stored XSS.This issue affects Accounting for WooCommerce: from n/a through 1.6.8.
Affected versions
Min -, max 1.6.9.
Status
vulnerable
Previous vulnerability researches
Finpose – Accounting for WooCommerce (d408419739e8ef161bdc4ff966dfec414c6e852e) , Jun 07, 2024
Accounting for WooCommerce (CVE-2025-30835) , Apr 03, 2025
Accounting for WooCommerce (CVE-2024-11324) , Dec 06, 2024
Accounting for WooCommerce (CVE-2025-26929) , Mar 19, 2025
New vulnerability
Woo Product Feed For Marketing Channels (CVE-2025-31377) , Apr 10, 2025
Easy custom css by webriti (CVE-2025-31395) , Apr 10, 2025
Checkout Mestres WP (CVE-2025-32695) , Apr 10, 2025
Request Call Back (CVE-2025-32483) , Apr 10, 2025
QR Master (CVE-2025-32116) , Apr 10, 2025