cleantalk
Vulnerabilities and Security Researches

WP Proposals, CVE-2025-57965

CVE, Research URL

CVE-2025-57965

Home page URL

Security reports for WP Proposals

Application

WP Proposals

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP CodeUs WP Proposals wp-proposals allows Stored XSS.This issue affects WP Proposals: from n/a through <= 2.3.
Affected versions
max 2.3.
Status
vulnerable
Previous vulnerability researches
Generic Elements (CVE-2024-53709) , Nov 26, 2024
Generic Elements (CVE-2025-9080) , Apr 25, 2026
Generic Elements (CVE-2025-62082) , Dec 11, 2025
New vulnerability
Image Editor by Pixo (CVE-2025-58232) , Apr 25, 2026
WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce (CVE-2025-2799) , Apr 25, 2026
Kubio AI Page Builder (CVE-2025-8487) , Apr 25, 2026
PlayerJS (CVE-2025-58651) , Apr 25, 2026
PilotPress (CVE-2025-58238) , Apr 25, 2026