cleantalk
Vulnerabilities and Security Researches

Plugin Central, dc94c84bbc7a71287b02b5d483cdf884e1ca2777

CVE, Research URL

dc94c84bbc7a71287b02b5d483cdf884e1ca2777

Home page URL

Security reports for Plugin Central

Application

Plugin Central

Published on
Nov 24, 2015
Research Description
Plugin Central [plugin-central] < 2.5.1 WordPress Central Plugin <= 2.5 - Reflected Cross Site Scripting (XSS) Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Upgrade the plugin.
Affected versions
max 2.5.1.
Status
vulnerable
Previous vulnerability researches
Plugin Central (CVE-2025-46439) , Apr 26, 2025
Plugin Central (dc94c84bbc7a71287b02b5d483cdf884e1ca2777) , Jun 07, 2024
New vulnerability
Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery (CVE-2024-13362) , May 02, 2026
GiveWP &#8211; Donation Plugin and Fundraising Platform (CVE-2026-34900) , May 02, 2026
Place Order Without Payment for WooCommerce (CVE-2024-13362) , May 02, 2026
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2024-13362) , May 02, 2026
Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile &amp; Restrict Content – ProfilePress (CVE-2026-41556) , May 02, 2026