cleantalk
Vulnerabilities and Security Researches

Ninja Tables – Best Data Table Plugin for WordPress, CVE-2024-12772

CVE, Research URL

CVE-2024-12772

Home page URL

Security reports for Ninja Tables – Best Data Table Plugin for WordPress

Application

Ninja Tables – Best Data Table Plugin for WordPress

Published on
Jan 31, 2025
Research Description
The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, leading to a Cross Site Scripting vulnerability.
Affected versions
Min -, max 5.0.17.
Status
vulnerable
Previous vulnerability researches
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-12772) , Feb 01, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2939) , Jun 14, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2940) , Jul 02, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23503) , Jul 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23504) , Jun 10, 2024
New vulnerability
MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more (CVE-2025-24757) , Jul 06, 2025
File Manager (CVE-2025-27358) , Jul 06, 2025
Booking Calendar Contact Form (CVE-2025-48231) , Jul 06, 2025
NGG Smart Image Search (CVE-2025-52832) , Jul 05, 2025
(Simply) Guest Author Name (CVE-2025-24764) , Jul 05, 2025