cleantalk
Vulnerabilities and Security Researches

Featured Posts Grid, CVE-2025-28905

CVE, Research URL

CVE-2025-28905

Home page URL

Security reports for Featured Posts Grid

Application

Featured Posts Grid

Published on
Mar 12, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chaser324 Featured Posts Grid allows Stored XSS. This issue affects Featured Posts Grid: from n/a through 1.7.
Affected versions
Min -, max 1.7.
Status
vulnerable
Previous vulnerability researches
Featured Posts Grid (CVE-2025-28905) , Mar 13, 2025
New vulnerability
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (CVE-2025-1620) , Mar 14, 2025
Hide My WP Ghost – Security Plugin (CVE-2025-2056) , Mar 14, 2025
Business Directory Plugin – Easy Listing Directories for WordPress (CVE-2024-13887) , Mar 14, 2025
AppPresser – Mobile App Framework (CVE-2025-1561) , Mar 14, 2025
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2025-1119) , Mar 14, 2025