cleantalk
Vulnerabilities and Security Researches

Amazon Showcase WordPress Plugin, CVE-2025-39431

CVE, Research URL

CVE-2025-39431

Home page URL

Security reports for Amazon Showcase WordPress Plugin

Application

Amazon Showcase WordPress Plugin

Published on
Apr 17, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Aaron Forgue Amazon Showcase WordPress Plugin allows Stored XSS. This issue affects Amazon Showcase WordPress Plugin: from n/a through 2.2.
Affected versions
Min -, max 2.2.
Status
vulnerable
Previous vulnerability researches
Additional Custom Product Tabs for WooCommerce (CVE-2025-26749) , Apr 15, 2025
Custom Product Tabs For WooCommerce (CVE-2024-12721) , Dec 22, 2024
New vulnerability
Hotel Booking (CVE-2025-39526) , Apr 19, 2025
TableOn – WordPress Posts Table Filterable  (CVE-2025-32592) , Apr 19, 2025
WP Social Bookmarking (CVE-2025-39422) , Apr 19, 2025
Anthologize (CVE-2025-39437) , Apr 19, 2025
Piotnet Addons For Elementor (CVE-2024-13650) , Apr 19, 2025