cleantalk
Vulnerabilities and Security Researches

AWcode Toolkit, CVE-2025-24554

CVE, Research URL

CVE-2025-24554

Home page URL

Security reports for AWcode Toolkit

Application

AWcode Toolkit

Published on
Feb 14, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in awcode AWcode Toolkit allows Reflected XSS. This issue affects AWcode Toolkit: from n/a through 1.0.14.
Affected versions
Min -, max 1.0.15.
Status
vulnerable
Previous vulnerability researches
AWcode Toolkit (CVE-2025-24554) , Feb 16, 2025
AWcode Toolkit (CVE-2025-48238) , May 21, 2025
New vulnerability
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder (CVE-2025-48341) , May 21, 2025
Back Button Widget (CVE-2025-48252) , May 21, 2025
Cloudflare Turnstile or reCAPTCHA For All Pages, to Block Spam and Hackers Attack, Block Visitors from China (CVE-2025-48243) , May 21, 2025
Free Shipping Amount Label & Progress Bar for WooCommerce (CVE-2025-48253) , May 21, 2025
WordPress Gallery Plugin – NextGEN Gallery (CVE-2024-5878) , May 21, 2025