cleantalk
Vulnerabilities and Security Researches

Enable Media Replace, CVE-2025-31081

CVE, Research URL

CVE-2025-31081

Home page URL

Security reports for Enable Media Replace

Application

Enable Media Replace

Published on
Apr 02, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ShortPixel Enable Media Replace enable-media-replace allows Reflected XSS.This issue affects Enable Media Replace: from n/a through <= 4.1.5.
Affected versions
max 4.1.6.
Status
vulnerable
Previous vulnerability researches
Enable Media Replace , May 26, 2026
Enable Media Replace (2071476a-d6de-4035-82e5-a85f73f3e3d3) , Jun 16, 2026
Enable Media Replace (df3e2fab6a5af3b9e0d27a3576fbf0a2a4fd63ea) , Jun 16, 2026
Enable Media Replace (f4b1dd6a3e69c6d6edbf516b825332a3724c8798) , Jun 16, 2026
Enable Media Replace (CVE-2026-2732) , Apr 14, 2026
New vulnerability
Newsletters (CVE-2026-54840) , Jun 25, 2026
wpDataTables &#8211; WordPress Data Table, Dynamic Tables &amp; Table Charts Plugin (CVE-2026-54825) , Jun 24, 2026
Interactive Content – H5P (CVE-2026-56006) , Jun 24, 2026
Transbank Webpay REST (CVE-2026-6858) , Jun 24, 2026
ProfileGrid – User Profiles, Memberships, Groups and Communities (CVE-2026-4610) , Jun 24, 2026