cleantalk
Vulnerabilities and Security Researches

AI Moderator for BuddyPress, c5199662169f8022d0a0bdb6a709c2dd4e56fd11

CVE, Research URL

c5199662169f8022d0a0bdb6a709c2dd4e56fd11

Home page URL

Security reports for AI Moderator for BuddyPress

Application

AI Moderator for BuddyPress

Published on
Jul 18, 2023
Research Description
AI Moderator for BuddyPress [ai-moderator-for-buddypress-and-buddyboss] <= 1.0 (unfixed) WordPress AI Moderator for BuddyPress Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) No patched version available. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress AI Moderator for BuddyPress Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.
Affected versions
max 1.0.
Status
vulnerable
Previous vulnerability researches
AI Moderator for BuddyPress (c5199662169f8022d0a0bdb6a709c2dd4e56fd11) , Jun 07, 2024
Buddypress Humanity (CVE-2025-31033) , Apr 11, 2025
BuddyPress xProfile Checkout Manager for WooCommerce (a5d9f295a711e0878315c783d59b7a1edfa94bbf) , Jun 07, 2024
Wbcom Designs &#8211; BuddyPress Group Reviews (CVE-2022-2108) , Jun 06, 2024
Wbcom Designs &#8211; BuddyPress Group Reviews (dc16c7b0b542f8afa7dafd55e2f68f72e9f422be) , Jun 06, 2024
New vulnerability
NextMove Lite &#8211; Thank You Page for WooCommerce (CVE-2025-52735) , Nov 10, 2025
NextMove Lite &#8211; Thank You Page for WooCommerce (CVE-2025-62969) , Nov 10, 2025
Contact Form 7 Database Addon &#8211; CFDB7 (CVE-2025-4665) , Nov 10, 2025
Library Management System (CVE-2025-10303) , Nov 10, 2025
CM Business Directory Plugin &#8211; Business Listing Directory (CVE-2025-10178) , Nov 10, 2025