cleantalk
Vulnerabilities and Security Researches

Ninja Tables – Best Data Table Plugin for WordPress, CVE-2021-24900

CVE, Research URL

CVE-2021-24900

Home page URL

Security reports for Ninja Tables – Best Data Table Plugin for WordPress

Application

Ninja Tables – Best Data Table Plugin for WordPress

Published on
Feb 01, 2022
Research Description
The Ninja Tables WordPress plugin before 4.1.8 does not sanitise and escape some of its table fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
Affected versions
Min -, max 4.3.5.
Status
vulnerable
Previous vulnerability researches
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-12772) , Feb 01, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2939) , Jun 14, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23503) , Jul 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23504) , Jun 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-7304) , Aug 27, 2024
New vulnerability
DIOT SCADA with MQTT (CVE-2025-4216) , Jun 16, 2025
Simple Newsletter Plugin – Noptin (CVE-2025-49871) , Jun 16, 2025
Job Board Manager (CVE-2025-49324) , Jun 16, 2025
Bitly URL Shortener (CVE-2025-30629) , Jun 16, 2025
ACF Onyx Poll (CVE-2025-5841) , Jun 16, 2025