cleantalk
Vulnerabilities and Security Researches

Email Template Customizer for WooCommerce, CVE-2025-64200

CVE, Research URL

CVE-2025-64200

Home page URL

Security reports for Email Template Customizer for WooCommerce

Application

Email Template Customizer for WooCommerce

Published on
Oct 29, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VillaTheme Email Template Customizer for WooCommerce email-template-customizer-for-woo allows Stored XSS.This issue affects Email Template Customizer for WooCommerce: from n/a through <= 1.2.17.
Affected versions
max 1.2.17.
Status
vulnerable
Previous vulnerability researches
DominoKit (CVE-2025-12350) , Nov 10, 2025
New vulnerability
NGINX Cache Optimizer (CVE-2025-12014) , Nov 11, 2025
Author: Munzir (CVE-2025-58916) , Nov 11, 2025
Watu Quiz (CVE-2025-11238) , Nov 11, 2025
Advanced Custom Fields : CPT Options Pages (CVE-2025-60208) , Nov 11, 2025
Doliconnect (CVE-2025-53574) , Nov 11, 2025