cleantalk
Vulnerabilities and Security Researches

Asgaros Forum, CVE-2025-39514

CVE, Research URL

CVE-2025-39514

Home page URL

Security reports for Asgaros Forum

Application

Asgaros Forum

Published on
Apr 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Asgaros Asgaros Forum allows Stored XSS. This issue affects Asgaros Forum: from n/a through 3.0.0.
Affected versions
Min -, max 3.1.0.
Status
vulnerable
Previous vulnerability researches
Asgaros Forum (CVE-2025-32227) , Apr 10, 2025
Asgaros Forum (CVE-2021-24827) , Jun 07, 2024
Asgaros Forum (CVE-2023-5604) , Jun 07, 2024
Asgaros Forum (CVE-2021-42365) , Jun 07, 2024
Asgaros Forum (CVE-2022-41608) , Jun 07, 2024
New vulnerability
The E-Commerce ERP: Purchasing, Inventory, Fulfillment, Manufacturing, BOM, Accounting, Sales Analysis (CVE-2025-52836) , Jul 15, 2025
Strong Testimonials (CVE-2025-7367) , Jul 15, 2025
Companion Auto Update (CVE-2025-4369) , Jul 15, 2025
Restrict File Access (CVE-2025-7667) , Jul 15, 2025
Product XML Feed Manager for WooCommerce – Google Shopping, Social Sites, Skroutz & More (CVE-2025-30959) , Jul 15, 2025