cleantalk
Vulnerabilities and Security Researches

Team Rosters, CVE-2025-31905

CVE, Research URL

CVE-2025-31905

Home page URL

Security reports for Team Rosters

Application

Team Rosters

Published on
Apr 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Team Rosters allows Reflected XSS. This issue affects Team Rosters: from n/a through 4.7.
Affected versions
Min -, max 4.7.
Status
vulnerable
Previous vulnerability researches
Connector to CiviCRM with CiviMcRestFace (CVE-2025-31618) , Apr 01, 2025
New vulnerability
Easy Google Maps (CVE-2025-32138) , Apr 05, 2025
Tockify Events Calendar (CVE-2025-32174) , Apr 05, 2025
Ultra Addons Lite for Elementor (CVE-2025-32192) , Apr 05, 2025
WooCommerce Search, Filters & Merchandising (CVE-2025-32181) , Apr 05, 2025
Link Library (CVE-2025-2889) , Apr 05, 2025