cleantalk
Vulnerabilities and Security Researches

Rock Convert, CVE-2025-62911

CVE, Research URL

CVE-2025-62911

Home page URL

Security reports for Rock Convert

Application

Rock Convert

Published on
Oct 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rock Content Rock Convert rock-convert allows Stored XSS.This issue affects Rock Convert: from n/a through <= 3.0.1.
Affected versions
max 3.0.1.
Status
vulnerable
Previous vulnerability researches
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2021-24713) , Jun 06, 2024
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2024-11202) , Nov 27, 2024
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2025-24758) , Feb 16, 2025
New vulnerability
WP Travel Engine &#8211; Best Travel Booking WordPress Plugin (CVE-2025-7526) , Nov 10, 2025
WP Travel Engine &#8211; Best Travel Booking WordPress Plugin (CVE-2025-7634) , Nov 10, 2025
Podlove Web Player (CVE-2025-62908) , Nov 10, 2025
Simple Content Templates for Blog Posts &amp; Pages (CVE-2025-62958) , Nov 10, 2025
BackWPup &#8211; WordPress Backup Plugin (CVE-2025-10579) , Nov 10, 2025