cleantalk
Vulnerabilities and Security Researches

Ninja Tables – Best Data Table Plugin for WordPress, CVE-2024-12772

CVE, Research URL

CVE-2024-12772

Home page URL

Security reports for Ninja Tables – Best Data Table Plugin for WordPress

Application

Ninja Tables – Best Data Table Plugin for WordPress

Published on
Jan 31, 2025
Research Description
The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, leading to a Cross Site Scripting vulnerability.
Affected versions
Min -, max 5.0.17.
Status
vulnerable
Previous vulnerability researches
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-12772) , Feb 01, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2025-2939) , Jun 14, 2025
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23503) , Jul 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-23504) , Jun 10, 2024
Ninja Tables – Best Data Table Plugin for WordPress (CVE-2024-7304) , Aug 27, 2024
New vulnerability
DIOT SCADA with MQTT (CVE-2025-4216) , Jun 16, 2025
Simple Newsletter Plugin – Noptin (CVE-2025-49871) , Jun 16, 2025
Job Board Manager (CVE-2025-49324) , Jun 16, 2025
Bitly URL Shortener (CVE-2025-30629) , Jun 16, 2025
ACF Onyx Poll (CVE-2025-5841) , Jun 16, 2025