cleantalk
Vulnerabilities and Security Researches

WooMS, CVE-2025-32602

CVE, Research URL

CVE-2025-32602

Home page URL

Security reports for WooMS

Application

WooMS

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in aiiddqd WooMS allows Reflected XSS. This issue affects WooMS: from n/a through 9.12.
Affected versions
Min -, max 9.12.
Status
vulnerable
Previous vulnerability researches
License Manager for WooCommerce (CVE-2024-1639) , Jun 22, 2024
License Manager for WooCommerce (CVE-2022-4974) , Nov 14, 2024
License Manager for WooCommerce (CVE-2025-32522) , Apr 14, 2025
License Manager for WooCommerce (c23241aa8778d1caab55d91ad429e196a0d97d91) , Jun 07, 2024
License Manager for WooCommerce (CVE-2023-48742) , Jun 07, 2024
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025