cleantalk
Vulnerabilities and Security Researches

WP VR – 360 Panorama and Virtual Tour Builder For WordPress, CVE-2025-62885

CVE, Research URL

CVE-2025-62885

Home page URL

Security reports for WP VR – 360 Panorama and Virtual Tour Builder For WordPress

Application

WP VR – 360 Panorama and Virtual Tour Builder For WordPress

Published on
Oct 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RexTheme WP VR wpvr allows DOM-Based XSS.This issue affects WP VR: from n/a through <= 8.5.42.
Affected versions
max 8.5.42.
Status
vulnerable
Previous vulnerability researches
One Click Accessibility (CVE-2025-32640) , Apr 10, 2025
One Click Accessibility (CVE-2025-10700) , Nov 10, 2025
New vulnerability
Contact Form by Supsystic (CVE-2025-52753) , Nov 11, 2025
Post Connector (CVE-2025-52741) , Nov 11, 2025
Flights &amp; Hotels Booking WP Plugin (CVE-2025-62916) , Nov 11, 2025
Headline Analyzer (CVE-2025-62974) , Nov 11, 2025
Depicter Slider &#8211; Responsive Image Slider, Video Slider &amp; Post Slider (CVE-2025-11373) , Nov 11, 2025