cleantalk
Vulnerabilities and Security Researches

Elite crypto checkout, 5168e230bf164d8e0ebd8f95ccf9add5694cd07c

CVE, Research URL

5168e230bf164d8e0ebd8f95ccf9add5694cd07c

Home page URL

Security reports for Elite crypto checkout

Application

Elite crypto checkout

Published on
Jul 18, 2023
Research Description
Elite crypto checkout [elite-crypto-checkout] <= 1.4 (unfixed) WordPress Elite crypto checkout Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS) No patched version available. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Elite crypto checkout Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.
Affected versions
Min -, max 1.4.
Status
vulnerable
Previous vulnerability researches
Elite crypto checkout (5168e230bf164d8e0ebd8f95ccf9add5694cd07c) , Jun 07, 2024
Cryptocurrency Product for WooCommerce (59be8784a762f909def4834a3e75edf09048c69a) , Jun 07, 2024
Cryptocurrency Product for WooCommerce (CVE-2022-4974) , Nov 15, 2024
Crypto (CVE-2024-9990) , Oct 30, 2024
Crypto (CVE-2024-9989) , May 07, 2025
New vulnerability
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2025-3876) , May 11, 2025
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2025-3878) , May 11, 2025
WordPress Review Plugin: The Ultimate Solution for Building a Review Website (CVE-2025-2158) , May 11, 2025
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-4403) , May 11, 2025
Contact Us By Lord Linus (CVE-2025-1382) , May 11, 2025