cleantalk
Vulnerabilities and Security Researches

Premmerce User Roles, CVE-2025-64291

CVE, Research URL

CVE-2025-64291

Home page URL

Security reports for Premmerce User Roles

Application

Premmerce User Roles

Published on
Oct 29, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Premmerce Premmerce User Roles premmerce-user-roles allows Stored XSS.This issue affects Premmerce User Roles: from n/a through <= 1.0.13.
Affected versions
max 1.0.13.
Status
vulnerable
Previous vulnerability researches
Block Country (CVE-2025-48077) , Nov 11, 2025
iQ Block Country (CVE-2022-1762) , Jun 06, 2024
iQ Block Country (CVE-2021-36873) , Jun 06, 2024
iQ Block Country (CVE-2022-41155) , Jun 06, 2024
iQ Block Country (CVE-2022-0246) , Jun 06, 2024
New vulnerability
Range Slider AddOn for Gravity Forms (CVE-2025-49905) , Nov 11, 2025
YOP Poll (CVE-2025-62040) , Nov 11, 2025
Insert Headers and Footers Code &#8211; HT Script (CVE-2025-12112) , Nov 11, 2025
Easy Appointments (CVE-2025-49398) , Nov 11, 2025
Keyy Two Factor Authentication (like Clef) (CVE-2025-10293) , Nov 11, 2025