cleantalk
Vulnerabilities and Security Researches

Collapse-O-Matic, CVE-2023-40669

CVE, Research URL

CVE-2023-40669

Home page URL

Security reports for Collapse-O-Matic

Application

Collapse-O-Matic

Published on
Sep 27, 2023
Research Description
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in twinpictures, baden03 Collapse-O-Matic plugin <= 1.8.5.5 versions.
Affected versions
Min -, max 1.8.5.7.
Status
vulnerable
Previous vulnerability researches
Collapse-O-Matic (CVE-2024-4095) , Jun 17, 2024
Collapse-O-Matic (CVE-2022-4475) , Jun 07, 2024
Collapse-O-Matic (CVE-2023-40669) , Jun 07, 2024
Collapse-O-Matic (CVE-2023-7030) , Jun 07, 2024
New vulnerability
EWWW Image Optimizer , Jun 25, 2025
eDS Responsive Menu (CVE-2025-49971) , Jun 25, 2025
Live Sports Streamthunder (CVE-2025-49967) , Jun 25, 2025
WP Voting Contest Lite (CVE-2025-50017) , Jun 25, 2025
Automatically Hierarchic Categories in Menu (CVE-2025-50048) , Jun 24, 2025