cleantalk
Vulnerabilities and Security Researches

ATP Call Now, CVE-2025-50024

CVE, Research URL

CVE-2025-50024

Home page URL

Security reports for ATP Call Now

Application

ATP Call Now

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Truong Thanh ATP Call Now allows Stored XSS. This issue affects ATP Call Now: from n/a through 1.0.3.
Affected versions
Min -, max 1.0.3.
Status
vulnerable
Previous vulnerability researches
ATP Call Now (CVE-2025-50024) , Jul 02, 2025
New vulnerability
WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page (CVE-2025-53281) , Jul 03, 2025
Tealium (CVE-2025-50018) , Jul 03, 2025
Migration, Backup, Staging – WPvivid (CVE-2025-5961) , Jul 03, 2025
Mollie Payments for WooCommerce (CVE-2025-39362) , Jul 03, 2025
User Roles and Capabilities (CVE-2025-49981) , Jul 03, 2025