cleantalk
Vulnerabilities and Security Researches

bunny.net – WordPress CDN Plugin, CVE-2024-31361

CVE, Research URL

CVE-2024-31361

Home page URL

Security reports for bunny.net – WordPress CDN Plugin

Application

bunny.net – WordPress CDN Plugin

Published on
Apr 11, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1.
Affected versions
Min -, max 2.0.2.
Status
vulnerable
Previous vulnerability researches
bunny.net – WordPress CDN Plugin (CVE-2024-31361) , Jun 07, 2024
bunny.net – WordPress CDN Plugin (CVE-2025-48236) , May 22, 2025
New vulnerability
RSVPMaker (CVE-2025-48278) , May 23, 2025
Product Code for WooCommerce (CVE-2025-48264) , May 22, 2025
bunny.net – WordPress CDN Plugin (CVE-2025-48236) , May 22, 2025
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder (CVE-2025-48341) , May 21, 2025
Back Button Widget (CVE-2025-48252) , May 21, 2025