cleantalk
Vulnerabilities and Security Researches

Meta Tag Manager, b0fcad47c22dee0f54e7ea6d2c9aa64411cb16dc

CVE, Research URL

b0fcad47c22dee0f54e7ea6d2c9aa64411cb16dc

Home page URL

Security reports for Meta Tag Manager

Application

Meta Tag Manager

Published on
Jul 19, 2023
Research Description
Meta Tag Manager [meta-tag-manager] < 2.1 (closed) WordPress Meta Tag Manager Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Meta Tag Manager plugin to the latest available version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Meta Tag Manager Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.1.
Affected versions
max 2.1.
Status
vulnerable
Previous vulnerability researches
Meta Tag Manager (CVE-2025-5983) , Apr 23, 2026
Meta Tag Manager (CVE-2024-1770) , Jun 07, 2024
Meta Tag Manager (b0fcad47c22dee0f54e7ea6d2c9aa64411cb16dc) , Jun 07, 2024
Meta Tag Manager (CVE-2025-22260) , Feb 03, 2025
New vulnerability
Ni WooCommerce Order Export (CVE-2026-4140) , Apr 24, 2026
Slider Bootstrap Carousel (CVE-2026-4076) , Apr 24, 2026
Popup Builder &#8211; Create highly converting, mobile friendly marketing popups. (CVE-2025-9856) , Apr 24, 2026
MaxiBlocks Free Page Builder &amp; Template Library (CVE-2025-58968) , Apr 24, 2026
POST SMTP &#8211; The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications (CVE-2025-9219) , Apr 24, 2026