cleantalk
Vulnerabilities and Security Researches

Category Icon, CVE-2025-68525

CVE, Research URL

CVE-2025-68525

Home page URL

Security reports for Category Icon

Application

Category Icon

Published on
Dec 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pixelgrade Category Icon category-icon allows Stored XSS.This issue affects Category Icon: from n/a through <= 1.0.2.
Affected versions
max 1.0.2.
Status
vulnerable
Previous vulnerability researches
CRM and Lead Management by vcita (CVE-2025-5240) , Jul 23, 2025
CRM and Lead Management by vcita (CVE-2024-13702) , Mar 27, 2025
CRM and Lead Management by vcita (CVE-2024-13703) , Mar 14, 2025
CRM and Lead Management by vcita (CVE-2023-2405) , Jun 07, 2024
CRM and Lead Management by vcita (CVE-2023-2404) , Jun 07, 2024
New vulnerability
Category Icon (CVE-2025-68525) , Jan 06, 2026
Social Profilr (CVE-2025-49343) , Jan 06, 2026
Ultimate Addons for Contact Form 7 (CVE-2025-14356) , Dec 22, 2025
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025