cleantalk
Vulnerabilities and Security Researches

Ninja Tables – Best Data Table Plugin for WordPress, CVE-2021-24900

CVE, Research URL

CVE-2021-24900

Home page URL

Security reports for Ninja Tables – Best Data Table Plugin for WordPress

Application

Ninja Tables – Best Data Table Plugin for WordPress

Published on
Feb 01, 2022
Research Description
The Ninja Tables WordPress plugin before 4.1.8 does not sanitise and escape some of its table fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
Affected versions
Min -, max 4.3.5.
Status
vulnerable
Previous vulnerability researches
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-12772) , Feb 01, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2939) , Jun 14, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2940) , Jul 02, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23503) , Jul 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23504) , Jun 10, 2024
New vulnerability
MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more (CVE-2025-24757) , Jul 06, 2025
File Manager (CVE-2025-27358) , Jul 06, 2025
Booking Calendar Contact Form (CVE-2025-48231) , Jul 06, 2025
NGG Smart Image Search (CVE-2025-52832) , Jul 05, 2025
(Simply) Guest Author Name (CVE-2025-24764) , Jul 05, 2025