cleantalk
Vulnerabilities and Security Researches

Get Use APIs – JSON Content Importer, CVE-2025-15363

CVE, Research URL

CVE-2025-15363

Home page URL

Security reports for Get Use APIs – JSON Content Importer

Application

Get Use APIs – JSON Content Importer

Published on
Mar 18, 2026
Research Description
The Get Use APIs WordPress plugin before 2.0.10 executes imported JSON, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks under certain server configurations.
Affected versions
max 2.0.10.
Status
vulnerable
Previous vulnerability researches
Authors Autocomplete Meta Box (CVE-2025-25169) , Feb 17, 2025
New vulnerability
ViaBill – WooCommerce (CVE-2026-25469) , Mar 30, 2026
WP Courses LMS – Online Courses Builder, eLearning Courses, Courses Solution, Education Courses (CVE-2026-31914) , Mar 30, 2026
YML for Yandex Market (CVE-2026-32567) , Mar 30, 2026
OVRI Payment (CVE-2024-10938) , Mar 30, 2026
Textmetrics (CVE-2026-32331) , Mar 30, 2026