cleantalk
Vulnerabilities and Security Researches

WooCommerce – Payphone Gateway, CVE-2025-32523

CVE, Research URL

CVE-2025-32523

Home page URL

Security reports for WooCommerce – Payphone Gateway

Application

WooCommerce – Payphone Gateway

Published on
Apr 11, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in payphone WooCommerce – Payphone Gateway allows Reflected XSS. This issue affects WooCommerce – Payphone Gateway: from n/a through 3.2.0.
Affected versions
Min -, max 3.2.0.
Status
vulnerable
Previous vulnerability researches
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2024-2017) , Jul 22, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2025-30841) , Apr 04, 2025
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-0601) , Jun 07, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-29420) , Jun 07, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-29423) , Jun 07, 2024
New vulnerability
WP Food ordering and Restaurant Menu (CVE-2025-31040) , Apr 14, 2025
WP-BusinessDirectory – Business directory plugin for WordPress (CVE-2025-32629) , Apr 14, 2025
Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer (CVE-2024-13338) , Apr 14, 2025
Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer (CVE-2024-13337) , Apr 14, 2025
EventON (CVE-2025-32614) , Apr 14, 2025