cleantalk
Vulnerabilities and Security Researches

HTML Forms, CVE-2025-46236

CVE, Research URL

CVE-2025-46236

Home page URL

Security reports for HTML Forms

Application

HTML Forms

Published on
Apr 22, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms allows Stored XSS. This issue affects HTML Forms: from n/a through 1.5.2.
Affected versions
Min -, max 1.5.3.
Status
vulnerable
Previous vulnerability researches
MPL-Publisher — Ebook & Audiobook Creator (CVE-2021-39343) , Jun 07, 2024
MPL-Publisher — Ebook & Audiobook Creator (CVE-2025-46226) , Apr 24, 2025
New vulnerability
SKT Blocks – Gutenberg based Page Builder (CVE-2025-46235) , Apr 24, 2025
Message Filter for Contact Form 7 (CVE-2025-46252) , Apr 24, 2025
Custom Related Posts (CVE-2025-46227) , Apr 24, 2025
CM Answers – Powerful WordPress Forum Plugin (CVE-2025-46246) , Apr 24, 2025
Checkout Field Visibility for WooCommerce (CVE-2025-39391) , Apr 24, 2025