cleantalk
Vulnerabilities and Security Researches

WP24 Domain Check, 78ea2ec0fca01dd53451fe8e05374ed7fbe409bb

CVE, Research URL

78ea2ec0fca01dd53451fe8e05374ed7fbe409bb

Home page URL

Security reports for WP24 Domain Check

Application

WP24 Domain Check

Published on
Jan 06, 2021
Research Description
WP24 Domain Check [wp24-domain-check] < 1.6.3 WP24 Domain Check <= 1.6.2 - Cross-Site Scripting The WP24 Domain Check plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, and including, 1.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 1.6.3.
Status
vulnerable
Previous vulnerability researches
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37271) , Jul 01, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2023-33999) , Jun 14, 2026
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2022-4974) , Nov 15, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37105) , Jun 24, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2025-54740) , Aug 17, 2025
New vulnerability
Accept Stripe Donation and Payments &#8211; AidWP (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Accept Stripe Donation and Payments &#8211; AidWP (78f90765fe59fa3e13a5c06d00d9973f2f5e0762) , Jun 16, 2026
Sender by BestWebSoft (efd816c3-90d4-40bf-850a-0e4c1a756694) , Jun 16, 2026
WordPress Tag and Category Manager &#8211; AI Autotagger (b5509e79-1f17-48be-afcb-26329112dd9f) , Jun 16, 2026
WordPress Tag and Category Manager &#8211; AI Autotagger (725f4d7ae3507b77a248c59e57beafdb1cafb51e) , Jun 16, 2026