cleantalk
Vulnerabilities and Security Researches

Latest Post Shortcode, CVE-2025-58609

CVE, Research URL

CVE-2025-58609

Home page URL

Security reports for Latest Post Shortcode

Application

Latest Post Shortcode

Published on
Sep 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Iulia Cazan Latest Post Shortcode allows Stored XSS. This issue affects Latest Post Shortcode: from n/a through 14.0.3.
Affected versions
max 14.10.
Status
vulnerable
Previous vulnerability researches
Latest Post Shortcode (CVE-2025-58609) , Sep 06, 2025
Latest Post Shortcode (CVE-2026-24995) , Feb 27, 2026
New vulnerability
Library Viewer (CVE-2025-15396) , Feb 27, 2026
Directorist – WordPress Business Directory Plugin with Classified Ads Listings (CVE-2025-68069) , Feb 27, 2026
WCFM Membership – WooCommerce Memberships for Multivendor Marketplace (CVE-2025-15147) , Feb 27, 2026
Better Search – Relevant search results for WordPress (CVE-2026-24938) , Feb 27, 2026
Wired Impact Volunteer Management (CVE-2026-24997) , Feb 27, 2026