cleantalk
Vulnerabilities and Security Researches

Head Meta Data, CVE-2025-66081

CVE, Research URL

CVE-2025-66081

Home page URL

Security reports for Head Meta Data

Application

Head Meta Data

Published on
Nov 21, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Head Meta Data head-meta-data allows Stored XSS.This issue affects Head Meta Data: from n/a through <= 20250327.
Affected versions
max 20250327.
Status
vulnerable
Previous vulnerability researches
Multi-Column Taxonomy List (CVE-2025-46491) , Apr 26, 2025
New vulnerability
CP Contact Form with PayPal (CVE-2025-13384) , Dec 11, 2025
wp-twitpic (CVE-2025-12670) , Dec 11, 2025
Online Booking &amp; Scheduling Calendar for WordPress by vcita (CVE-2025-67559) , Dec 11, 2025
Online Booking &amp; Scheduling Calendar for WordPress by vcita (CVE-2025-67472) , Dec 11, 2025
Gutenverse Form (CVE-2025-66079) , Dec 11, 2025