cleantalk
Vulnerabilities and Security Researches

CM Answers – Powerful WordPress Forum Plugin, CVE-2023-25992

CVE, Research URL

CVE-2023-25992

Home page URL

Security reports for CM Answers – Powerful WordPress Forum Plugin

Application

CM Answers – Powerful WordPress Forum Plugin

Published on
Mar 23, 2023
Research Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeMindsSolutions CM Answers plugin <= 3.1.9 versions.
Affected versions
Min -, max 3.2.0.
Status
vulnerable
Previous vulnerability researches
CM Answers &#8211; Powerful WordPress Forum Plugin (CVE-2024-54267) , Dec 15, 2024
CM Answers &#8211; Powerful WordPress Forum Plugin (CVE-2023-25992) , Jun 07, 2024
CM Answers &#8211; Powerful WordPress Forum Plugin (CVE-2025-46246) , Apr 24, 2025
New vulnerability
Spreadsheet Price Changer for WooCommerce and WP E-commerce &#8211; Light (CVE-2025-39378) , Apr 25, 2025
PowerPress Podcasting plugin by Blubrry (CVE-2024-9230) , Apr 25, 2025
Capturly (CVE-2025-39379) , Apr 25, 2025
Frontend Login and Registration Blocks (CVE-2025-3607) , Apr 25, 2025
Ultimate Dashboard &#8211; Custom WordPress Dashboard (CVE-2025-1523) , Apr 25, 2025