cleantalk
Vulnerabilities and Security Researches

WPB Image Widget, CVE-2025-58858

CVE, Research URL

CVE-2025-58858

Home page URL

Security reports for WPB Image Widget

Application

WPB Image Widget

Published on
Sep 05, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPBean WPB Image Widget allows Stored XSS. This issue affects WPB Image Widget: from n/a through 1.1.
Affected versions
Min -, max 1.1.
Status
vulnerable
Previous vulnerability researches
Image License and Protection (CVE-2025-8047) , Aug 27, 2025
New vulnerability
My Tickets (CVE-2025-58988) , Sep 10, 2025
ZIP Code Based Content Protection (CVE-2025-59008) , Sep 10, 2025
Tutor LMS – eLearning and online course solution (CVE-2025-58993) , Sep 10, 2025
BerqWP – Core Web Vitals & Speed Optimization Using Cloud (CVE-2025-58979) , Sep 10, 2025
Equalize Digital Accessibility Checker – Audit Your Website for WCAG, ADA, and Section 508 Accessibility Errors (CVE-2025-58981) , Sep 10, 2025