cleantalk
Vulnerabilities and Security Researches

Ocean Extra, CVE-2023-24399

CVE, Research URL

CVE-2023-24399

Home page URL

Security reports for Ocean Extra

Application

Ocean Extra

Published on
Mar 30, 2023
Research Description
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in OceanWP Ocean Extra plugin <= 2.1.2 versions.
Affected versions
Min -, max 2.1.3.
Status
vulnerable
Previous vulnerability researches
Ocean Extra (CVE-2025-3458) , Apr 29, 2025
Ocean Extra (CVE-2022-4974) , Nov 14, 2024
Ocean Extra (CVE-2025-3457) , Apr 29, 2025
Ocean Extra (CVE-2019-16250) , Jun 07, 2024
Ocean Extra (CVE-2021-25104) , Jun 07, 2024
New vulnerability
Faculty Staff and Student Directory Plugin &#8211; Campus Directory (CVE-2025-8313) , Aug 06, 2025
Chartify &#8211; WordPress Chart Plugin (CVE-2025-54673) , Aug 05, 2025
Paid Membership Subscriptions &#8211; Effortless Memberships, Recurring Payments &amp; Content Restriction (CVE-2025-54017) , Aug 05, 2025
Motors – Car Dealer, Classifieds &amp; Listing (CVE-2025-54691) , Aug 05, 2025
Ebook Store (CVE-2025-54702) , Aug 05, 2025