cleantalk
Vulnerabilities and Security Researches

TI WooCommerce Wishlist, CVE-2025-32920

CVE, Research URL

CVE-2025-32920

Home page URL

Security reports for TI WooCommerce Wishlist

Application

TI WooCommerce Wishlist

Published on
May 19, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TemplateInvaders TI WooCommerce Wishlist allows Stored XSS.This issue affects TI WooCommerce Wishlist: from n/a through 2.9.2.
Affected versions
Min -, max 2.9.2.
Status
vulnerable
Previous vulnerability researches
BLAZE Retail Widget (CVE-2024-6297) , Jul 22, 2024
BLAZE Retail Widget (5aa63b7aac05249d22e77bf0bcbe643aaba6f01b) , Jun 26, 2024
New vulnerability
Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin (CVE-2025-48247) , May 21, 2025
Qi Blocks (CVE-2025-1626) , May 21, 2025
Qi Blocks (CVE-2025-1625) , May 21, 2025
Qi Blocks (CVE-2025-1627) , May 21, 2025
Facturante – Facturación Electrónica (CVE-2025-47599) , May 21, 2025