cleantalk
Vulnerabilities and Security Researches

VR-Frases (collect & share quotes), CVE-2025-22636

CVE, Research URL

CVE-2025-22636

Home page URL

Security reports for VR-Frases (collect & share quotes)

Application

VR-Frases (collect & share quotes)

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vicente Ruiz Gálvez VR-Frases allows Reflected XSS. This issue affects VR-Frases: from n/a through 3.0.1.
Affected versions
Min -, max 3.0.1.
Status
vulnerable
Previous vulnerability researches
Arconix FAQ (CVE-2024-38783) , Mar 20, 2025
Arconix FAQ (CVE-2024-4233) , Jun 06, 2024
Arconix FAQ (CVE-2025-32531) , Apr 14, 2025
New vulnerability
Anthologize (CVE-2025-39437) , Apr 19, 2025
Piotnet Addons For Elementor (CVE-2024-13650) , Apr 19, 2025
Starfish Review Generation & Marketing for WordPress (CVE-2025-39533) , Apr 19, 2025
Add to Header (CVE-2025-39423) , Apr 19, 2025
Photo Contest | Competition | Video Contest (CVE-2025-23782) , Apr 19, 2025