cleantalk
Vulnerabilities and Security Researches

Flexmls® IDX Plugin, CVE-2026-25369

CVE, Research URL

CVE-2026-25369

Home page URL

Security reports for Flexmls® IDX Plugin

Application

Flexmls® IDX Plugin

Published on
Mar 16, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Flexmls Flexmls® IDX allows Reflected XSS.This issue affects Flexmls® IDX: from n/a through 3.15.9.
Affected versions
max 3.15.9.
Status
vulnerable
Previous vulnerability researches
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2024-5327) , Jun 07, 2024
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2021-25027) , Jun 07, 2024
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2021-24263) , Jun 07, 2024
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2023-6984) , Jun 07, 2024
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2024-1055) , Jun 07, 2024
New vulnerability
ionCube tester plus (CVE-2025-69411) , Mar 30, 2026
WP Review Slider (CVE-2026-32491) , Mar 30, 2026
MDTF – Meta Data and Taxonomies Filter (CVE-2026-32455) , Mar 30, 2026
Get Use APIs – JSON Content Importer (CVE-2025-15363) , Mar 30, 2026
OSM – OpenStreetMap (CVE-2026-33559) , Mar 30, 2026