cleantalk
Vulnerabilities and Security Researches

Arconix Shortcodes, CVE-2025-49858

CVE, Research URL

CVE-2025-49858

Home page URL

Security reports for Arconix Shortcodes

Application

Arconix Shortcodes

Published on
Jun 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tychesoftwares Arconix Shortcodes allows Stored XSS. This issue affects Arconix Shortcodes: from n/a through 2.1.17.
Affected versions
Min -, max 2.1.18.
Status
vulnerable
Previous vulnerability researches
Razorpay Payment Button Elementor Plugin (CVE-2024-10850) , Nov 14, 2024
Razorpay Payment Button Plugin (CVE-2024-10851) , Nov 14, 2024
New vulnerability
Meks Flexible Shortcodes (CVE-2025-49855) , Jun 20, 2025
CSV Me (CVE-2025-6086) , Jun 20, 2025
Ultimate Addons for Contact Form 7 (CVE-2025-6220) , Jun 19, 2025
Ebook Store (CVE-2025-49862) , Jun 19, 2025
Arconix Shortcodes (CVE-2025-49858) , Jun 19, 2025