cleantalk
Vulnerabilities and Security Researches

GHL Wizard, CVE-2025-58237

CVE, Research URL

CVE-2025-58237

Home page URL

Security reports for GHL Wizard

Application

GHL Wizard

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Niaj Morshed LC Wizard ghl-wizard allows Stored XSS.This issue affects LC Wizard: from n/a through <= 2.2.4.
Affected versions
max 2.2.4.
Status
vulnerable
Previous vulnerability researches
GHL Wizard (CVE-2025-68026) , Feb 27, 2026
GHL Wizard (CVE-2025-5483) , Apr 25, 2026
GHL Wizard (CVE-2025-58237) , Oct 11, 2025
New vulnerability
Ultra Addons Lite for Elementor (CVE-2025-9077) , Apr 25, 2026
VikRestaurants Table Reservations and Take-Away (CVE-2025-57962) , Apr 25, 2026
VikRestaurants Table Reservations and Take-Away (CVE-2025-57968) , Apr 25, 2026
RestroPress &#8211; Online Food Ordering System (CVE-2025-9209) , Apr 25, 2026
Smart Docs (CVE-2025-9333) , Apr 25, 2026