cleantalk
Vulnerabilities and Security Researches

Get Use APIs – JSON Content Importer, CVE-2023-6268

CVE, Research URL

CVE-2023-6268

Home page URL

Security reports for Get Use APIs – JSON Content Importer

Application

Get Use APIs – JSON Content Importer

Published on
Dec 27, 2023
Research Description
The JSON Content Importer WordPress plugin before 1.5.4 does not sanitise and escape the tab parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Affected versions
max 1.5.4.
Status
vulnerable
Previous vulnerability researches
Get Use APIs – JSON Content Importer (CVE-2023-25485) , Jun 07, 2024
Get Use APIs – JSON Content Importer (CVE-2023-6268) , Jun 07, 2024
Get Use APIs – JSON Content Importer (CVE-2025-15363) , Mar 30, 2026
Get Use APIs – JSON Content Importer (CVE-2024-38723) , Jul 15, 2024
New vulnerability
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-24373) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32385) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32498) , Mar 30, 2026
Gallery Block (Meow Gallery) (CVE-2026-32418) , Mar 30, 2026