cleantalk
Vulnerabilities and Security Researches

WP Social Widget, CVE-2025-57981

CVE, Research URL

CVE-2025-57981

Home page URL

Security reports for WP Social Widget

Application

WP Social Widget

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in catchsquare WP Social Widget wp-social-widget allows Stored XSS.This issue affects WP Social Widget: from n/a through <= 2.3.1.
Affected versions
max 2.3.1.
Status
vulnerable
Previous vulnerability researches
Events Listing Widget (CVE-2026-1252) , Apr 15, 2026
New vulnerability
Pz-LinkCard (CVE-2026-2434) , Apr 19, 2026
NGG Smart Image Search (CVE-2025-58027) , Apr 19, 2026
VideoZen (CVE-2026-6439) , Apr 19, 2026
Epeken All Kurir Plugin for Woocommerce Full Version (CVE-2025-57906) , Apr 19, 2026
Carousel Ultimate (CVE-2025-58652) , Apr 19, 2026