cleantalk
Vulnerabilities and Security Researches

Verowa Connect, CVE-2025-32609

CVE, Research URL

CVE-2025-32609

Home page URL

Security reports for Verowa Connect

Application

Verowa Connect

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Picture-Planet GmbH Verowa Connect allows Reflected XSS. This issue affects Verowa Connect: from n/a through 3.0.4.
Affected versions
Min -, max 3.0.5.
Status
vulnerable
Previous vulnerability researches
Church Admin (CVE-2025-39555) , Apr 18, 2025
Church Admin (CVE-2024-50438) , Oct 28, 2024
Church Admin (CVE-2024-37440) , Jul 02, 2024
Church Admin (CVE-2024-53795) , Dec 08, 2024
Church Admin (CVE-2025-26941) , Mar 28, 2025
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025