cleantalk
Vulnerabilities and Security Researches

PuzzleMe for WordPress, CVE-2025-58621

CVE, Research URL

CVE-2025-58621

Home page URL

Security reports for PuzzleMe for WordPress

Application

PuzzleMe for WordPress

Published on
Sep 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Amuse Labs PuzzleMe for WordPress allows Stored XSS. This issue affects PuzzleMe for WordPress: from n/a through 1.2.0.
Affected versions
Min -, max 1.2.1.
Status
vulnerable
Previous vulnerability researches
Community Lite Video Chat (12108f2d6b7cdd384ce360bc60e3cf6c2dcb247d) , Jun 06, 2024
Community Lite Video Chat (CVE-2024-49605) , Oct 22, 2024
New vulnerability
Pie Calendar (CVE-2025-58618) , Sep 05, 2025
Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net (CVE-2025-58634) , Sep 05, 2025
RumbleTalk Live Group Chat – HTML5 (CVE-2025-58626) , Sep 05, 2025
Official Billwerk+ Payments Gateway (CVE-2025-58616) , Sep 05, 2025
Gallery PhotoBlocks (CVE-2025-58610) , Sep 05, 2025