cleantalk
Vulnerabilities and Security Researches

Category Icon, CVE-2025-68525

CVE, Research URL

CVE-2025-68525

Home page URL

Security reports for Category Icon

Application

Category Icon

Published on
Dec 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pixelgrade Category Icon category-icon allows Stored XSS.This issue affects Category Icon: from n/a through <= 1.0.2.
Affected versions
max 1.0.2.
Status
vulnerable
Previous vulnerability researches
Arrow Maps &#8211; Custom Maps for WordPress (CVE-2025-28858) , Mar 28, 2025
New vulnerability
TI WooCommerce Wishlist (CVE-2025-67929) , Jan 08, 2026
Category Icon (CVE-2025-68525) , Jan 06, 2026
Social Profilr (CVE-2025-49343) , Jan 06, 2026
Ultimate Addons for Contact Form 7 (CVE-2025-14356) , Dec 22, 2025
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025