cleantalk
Vulnerabilities and Security Researches

Sitekit, CVE-2025-58229

CVE, Research URL

CVE-2025-58229

Home page URL

Security reports for Sitekit

Application

Sitekit

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webvitaly Sitekit sitekit allows Stored XSS.This issue affects Sitekit: from n/a through <= 2.0.
Affected versions
max 2.0.
Status
vulnerable
Previous vulnerability researches
Call To Action Plugin (CVE-2026-4118) , Apr 23, 2026
New vulnerability
WPZOOM Addons for Elementor (Templates, Widgets) (CVE-2026-39597) , Apr 24, 2026
Breaking News WP (CVE-2026-4280) , Apr 24, 2026
Countdown Timer Ultimate (CVE-2026-6443) , Apr 24, 2026
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2025-58673) , Apr 24, 2026
BMI Adult &amp; Kid Calculator (CVE-2025-53469) , Apr 24, 2026