cleantalk
Vulnerabilities and Security Researches

Custom Post Type UI, 7e74f7f7f0951d92dcba220c4a16ed7e48d3aa75

CVE, Research URL

7e74f7f7f0951d92dcba220c4a16ed7e48d3aa75

Home page URL

Security reports for Custom Post Type UI

Application

Custom Post Type UI

Published on
Mar 17, 2020
Research Description
Custom Post Type UI [custom-post-type-ui] < 1.13.5 WordPress Custom Post Type UI plugin <= 1.7.3 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered in WordPress Custom Post Type UI plugin (versions <= 1.7.3).
Affected versions
max 1.13.5.
Status
vulnerable
Previous vulnerability researches
Custom Post Type UI (CVE-2025-12826) , Jan 08, 2026
Custom Post Type UI (CVE-2023-1623) , Jun 06, 2024
Custom Post Type UI (7e74f7f7f0951d92dcba220c4a16ed7e48d3aa75) , Jun 06, 2024
Custom Post Type UI , Aug 05, 2025
New vulnerability
Advanced Classifieds &amp; Directory Pro (CVE-2025-68580) , Jan 10, 2026
Co-marquage service-public.fr (CVE-2025-62113) , Jan 10, 2026
404 Solution (CVE-2025-14477) , Jan 10, 2026
BizPrint &#8211; Print WooCommerce Order Receipts, Invoices, Labels &amp; More. (CVE-2025-69024) , Jan 10, 2026
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2025-13754) , Jan 10, 2026