cleantalk
Vulnerabilities and Security Researches

NanoSupport — Support Ticketing & Knowledgebase for WordPress, CVE-2025-31461

CVE, Research URL

CVE-2025-31461

Home page URL

Security reports for NanoSupport — Support Ticketing & Knowledgebase for WordPress

Application

NanoSupport — Support Ticketing & Knowledgebase for WordPress

Published on
Apr 02, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mayeenul Islam NanoSupport nanosupport allows Reflected XSS.This issue affects NanoSupport: from n/a through <= 0.6.0.
Affected versions
max 0.6.0.
Status
vulnerable
Previous vulnerability researches
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32668) , Apr 12, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-22645) , Feb 21, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-58253) , Apr 25, 2026
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32150) , Apr 06, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32596) , Apr 19, 2025
New vulnerability
FAQ Manager For Divi, Gutenberg Block &amp; Shortcode (CVE-2023-33999) , Jun 14, 2026
TablePress &#8211; Tables in WordPress made easy (CVE-2023-33999) , Jun 14, 2026
Docket Cache &#8211; Object Cache Accelerator (CVE-2026-22492) , Jun 14, 2026
Advanced Classifieds &amp; Directory Pro (CVE-2023-33999) , Jun 14, 2026
Display Eventbrite Events (CVE-2023-33999) , Jun 14, 2026