cleantalk
Vulnerabilities and Security Researches

Woocommerce Line Notify, CVE-2025-30972

CVE, Research URL

CVE-2025-30972

Home page URL

Security reports for Woocommerce Line Notify

Application

Woocommerce Line Notify

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in iamapinan Woocommerce Line Notify allows Stored XSS. This issue affects Woocommerce Line Notify: from n/a through 1.1.7.
Affected versions
Min -, max 1.1.7.
Status
vulnerable
Previous vulnerability researches
BuddyForms Ultimate Member (893cfcf44e3c079784f666e461a667cb4f6e2761) , Jun 06, 2024
New vulnerability
GG Bought Together for WooCommerce (CVE-2025-23967) , Jun 28, 2025
FormLift for Infusionsoft Web Forms (CVE-2025-47654) , Jun 28, 2025
Image Editor by Pixo (CVE-2025-5588) , Jun 28, 2025
GiveWP – Donation Plugin and Fundraising Platform (CVE-2025-4571) , Jun 28, 2025
Knowledge Base – Knowledge Base Maker (CVE-2025-52791) , Jun 27, 2025