cleantalk
Vulnerabilities and Security Researches

Instant Breaking News, CVE-2025-58217

CVE, Research URL

CVE-2025-58217

Home page URL

Security reports for Instant Breaking News

Application

Instant Breaking News

Published on
Aug 27, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in GeroNikolov Instant Breaking News allows Stored XSS. This issue affects Instant Breaking News: from n/a through 1.0.
Affected versions
Min -, max 1.0.1.
Status
vulnerable
Previous vulnerability researches
Ebook Store (CVE-2025-7486) , Jul 23, 2025
Ebook Store (CVE-2025-49862) , Jun 19, 2025
Ebook Store (CVE-2024-6567) , Aug 03, 2024
Ebook Store (CVE-2024-23501) , Jun 07, 2024
Ebook Store (ffe6f72e9fa817666514b597b5432d0b26f03e1b) , Jun 07, 2024
New vulnerability
Add Code To Head (CVE-2025-48314) , Aug 29, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-58195) , Aug 29, 2025
WP Bulk Delete (CVE-2025-58192) , Aug 29, 2025
Responsive Mobile-Friendly Tooltip (CVE-2025-48316) , Aug 29, 2025
Savyour Affiliate Partner (CVE-2025-48306) , Aug 29, 2025