cleantalk
Vulnerabilities and Security Researches

Modern Footnotes, CVE-2025-50049

CVE, Research URL

CVE-2025-50049

Home page URL

Security reports for Modern Footnotes

Application

Modern Footnotes

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in prismtechstudios Modern Footnotes allows Stored XSS. This issue affects Modern Footnotes: from n/a through 1.4.19.
Affected versions
Min -, max 1.4.19.
Status
vulnerable
Previous vulnerability researches
XML Travel Portal Widget (CVE-2025-49968) , Jun 23, 2025
New vulnerability
WP Visitor Statistics (Real Time Traffic) (CVE-2025-49996) , Jun 24, 2025
Video List Manager (CVE-2025-49986) , Jun 24, 2025
Video List Manager (CVE-2025-52821) , Jun 24, 2025
Modern Footnotes (CVE-2025-50049) , Jun 24, 2025
Guest posting / Frontend Posting wordpress plugin – WP Front User Submit / Front Editor (CVE-2025-52795) , Jun 24, 2025