cleantalk
Vulnerabilities and Security Researches

Review Stream, CVE-2025-32680

CVE, Research URL

CVE-2025-32680

Home page URL

Security reports for Review Stream

Application

Review Stream

Published on
Apr 09, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Grade Us, Inc. Review Stream allows Stored XSS. This issue affects Review Stream: from n/a through 1.6.7.
Affected versions
Min -, max 1.6.7.
Status
vulnerable
Previous vulnerability researches
FormLift for Infusionsoft Web Forms (CVE-2025-31434) , Apr 03, 2025
FormLift for Infusionsoft Web Forms (CVE-2024-38773) , Jul 23, 2024
New vulnerability
Editor Wysiwyg Background Color (CVE-2025-23958) , Apr 18, 2025
Subscribe to Unlock Lite – Opt In Content Locker Plugin for WordPress (CVE-2025-39592) , Apr 18, 2025
Membership For WooCommerce – Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members wi (CVE-2025-39579) , Apr 18, 2025
WP Flipclock (CVE-2025-39540) , Apr 18, 2025
WooCommerce Products without featured images (CVE-2025-32545) , Apr 18, 2025