cleantalk
Vulnerabilities and Security Researches

Amazon Showcase WordPress Plugin, CVE-2025-39431

CVE, Research URL

CVE-2025-39431

Home page URL

Security reports for Amazon Showcase WordPress Plugin

Application

Amazon Showcase WordPress Plugin

Published on
Apr 17, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Aaron Forgue Amazon Showcase WordPress Plugin allows Stored XSS. This issue affects Amazon Showcase WordPress Plugin: from n/a through 2.2.
Affected versions
Min -, max 2.2.
Status
vulnerable
Previous vulnerability researches
pixelstats (CVE-2025-2164) , Mar 16, 2025
New vulnerability
All push notification for WP (CVE-2025-32546) , Apr 19, 2025
Hotel Booking (CVE-2025-39526) , Apr 19, 2025
TableOn – WordPress Posts Table Filterable  (CVE-2025-32592) , Apr 19, 2025
WP Social Bookmarking (CVE-2025-39422) , Apr 19, 2025
Anthologize (CVE-2025-39437) , Apr 19, 2025