cleantalk
Vulnerabilities and Security Researches

Evangelische Termine, CVE-2025-28960

CVE, Research URL

CVE-2025-28960

Home page URL

Security reports for Evangelische Termine

Application

Evangelische Termine

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in regibaer Evangelische Termine allows Reflected XSS. This issue affects Evangelische Termine: from n/a through 3.3.
Affected versions
Min -, max 3.3.
Status
vulnerable
Previous vulnerability researches
BuddyForms Ultimate Member (893cfcf44e3c079784f666e461a667cb4f6e2761) , Jun 06, 2024
New vulnerability
DirectIQ Email Marketing (CVE-2025-52829) , Jun 28, 2025
e.nigma buttons (CVE-2025-5535) , Jun 28, 2025
Evangelische Termine (CVE-2025-28960) , Jun 28, 2025
GG Bought Together for WooCommerce (CVE-2025-23967) , Jun 28, 2025
FormLift for Infusionsoft Web Forms (CVE-2025-47654) , Jun 28, 2025