cleantalk
Vulnerabilities and Security Researches

WP Author box, Bio link and Post Rating – Authorsy, CVE-2025-27006

CVE, Research URL

CVE-2025-27006

Home page URL

Security reports for WP Author box, Bio link and Post Rating – Authorsy

Application

WP Author box, Bio link and Post Rating – Authorsy

Published on
Sep 26, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themeplugs Authorsy allows Stored XSS. This issue affects Authorsy: from n/a through 1.0.5.
Affected versions
max 1.0.6.
Status
vulnerable
Previous vulnerability researches
WP Author box, Bio link and Post Rating – Authorsy (CVE-2025-27006) , Oct 12, 2025
WP Author box, Bio link and Post Rating – Authorsy (CVE-2026-24950) , Feb 27, 2026
New vulnerability
ElementsKit Elementor addons (CVE-2026-23693) , Feb 27, 2026
Stop Spammers Security | Block Spam Users, Comments, Forms (CVE-2025-14795) , Feb 27, 2026
Slider Responsive Slideshow – Image slider, Gallery slideshow (CVE-2026-22346) , Feb 27, 2026
Endless Posts Navigation (CVE-2026-25332) , Feb 27, 2026
Eleblog – Elementor Blog And Magazine Addons (CVE-2025-69374) , Feb 27, 2026