cleantalk
Vulnerabilities and Security Researches

FAQ Builder AYS, CVE-2025-24722

CVE, Research URL

CVE-2025-24722

Home page URL

Security reports for FAQ Builder AYS

Application

FAQ Builder AYS

Published on
Jan 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in F.A.Q Builder Team FAQ Builder AYS allows Stored XSS. This issue affects FAQ Builder AYS: from n/a through 1.7.3.
Affected versions
max 1.7.4.
Status
vulnerable
Previous vulnerability researches
FAQ Builder AYS (CVE-2026-25346) , Mar 29, 2026
FAQ Builder AYS (CVE-2025-24722) , Jan 25, 2025
FAQ Builder AYS (CVE-2021-24461) , Jun 06, 2024
FAQ Builder AYS (CVE-2024-11458) , Nov 29, 2024
New vulnerability
BackWPup – WordPress Backup Plugin (CVE-2025-15041) , Mar 29, 2026
hCaptcha for WordPress (CVE-2026-25315) , Mar 29, 2026
Breeze – WordPress Cache Plugin (CVE-2025-13864) , Mar 29, 2026
SMTP Mailer (CVE-2026-32538) , Mar 29, 2026
Best WordPress Gallery Plugin – FooGallery (CVE-2026-25362) , Mar 29, 2026