cleantalk
Vulnerabilities and Security Researches

Category Icon, CVE-2025-68525

CVE, Research URL

CVE-2025-68525

Home page URL

Security reports for Category Icon

Application

Category Icon

Published on
Dec 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pixelgrade Category Icon category-icon allows Stored XSS.This issue affects Category Icon: from n/a through <= 1.0.2.
Affected versions
max 1.0.2.
Status
vulnerable
Previous vulnerability researches
Advanced Flamingo (CVE-2023-52226) , Jun 07, 2024
Flamingo , Apr 16, 2025
Flamingo (022a9997dfc335fe7d818f90b085eb691dd3ba3c) , Jun 07, 2024
New vulnerability
Security Optimizer &#8211; The All-In-One WordPress Protection Plugin (CVE-2025-66121) , Jan 08, 2026
TI WooCommerce Wishlist (CVE-2025-67929) , Jan 08, 2026
Category Icon (CVE-2025-68525) , Jan 06, 2026
Social Profilr (CVE-2025-49343) , Jan 06, 2026
Ultimate Addons for Contact Form 7 (CVE-2025-14356) , Dec 22, 2025