cleantalk
Vulnerabilities and Security Researches

EZ SQL Reports Shortcode Widget and DB Backup, CVE-2025-26887

CVE, Research URL

CVE-2025-26887

Home page URL

Security reports for EZ SQL Reports Shortcode Widget and DB Backup

Application

EZ SQL Reports Shortcode Widget and DB Backup

Published on
Feb 25, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eli EZ SQL Reports Shortcode Widget and DB Backup allows Stored XSS. This issue affects EZ SQL Reports Shortcode Widget and DB Backup: from n/a through 5.21.35.
Affected versions
Min -, max 5.25.08.
Status
vulnerable
Previous vulnerability researches
EZ SQL Reports Shortcode Widget and DB Backup (CVE-2025-30788) , Apr 02, 2025
EZ SQL Reports Shortcode Widget and DB Backup (CVE-2025-30787) , Apr 02, 2025
EZ SQL Reports Shortcode Widget and DB Backup (CVE-2025-26887) , Feb 25, 2025
EZ SQL Reports Shortcode Widget and DB Backup (01aaecbc-6aae-4a33-ac00-1b14b34f4c71) , Jun 07, 2024
EZ SQL Reports Shortcode Widget and DB Backup (CVE-2025-2319) , Mar 26, 2025
New vulnerability
Spoki – Chat Buttons and WooCommerce Notifications (CVE-2025-50026) , Jul 03, 2025
Amazon Products to WooCommerce (CVE-2025-5813) , Jul 03, 2025
Breeze – WordPress Cache Plugin (CVE-2025-23999) , Jul 03, 2025
Twitch TV Embed Suite (CVE-2025-53313) , Jul 03, 2025
re.place (CVE-2025-53338) , Jul 03, 2025