cleantalk
Vulnerabilities and Security Researches

Sitekit, CVE-2025-50047

CVE, Research URL

CVE-2025-50047

Home page URL

Security reports for Sitekit

Application

Sitekit

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webvitaly Sitekit allows Stored XSS. This issue affects Sitekit: from n/a through 1.9.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
Disable WordPress Update Notifications and auto-update Email Notifications (CVE-2023-34029) , Jun 07, 2024
New vulnerability
WP Edit (CVE-2025-53253) , Jul 01, 2025
Accept Authorize.NET Payments Using Contact Form 7 (CVE-2025-53322) , Jul 01, 2025
Owl carousel responsive (CVE-2025-5590) , Jul 01, 2025
App Builder – Create Native Android & iOS Apps On The Flight (CVE-2025-49989) , Jul 01, 2025
Sitekit (CVE-2025-50047) , Jul 01, 2025