cleantalk
Vulnerabilities and Security Researches

WP Wizard Cloak, CVE-2025-53237

CVE, Research URL

CVE-2025-53237

Home page URL

Security reports for WP Wizard Cloak

Application

WP Wizard Cloak

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Soflyy WP Wizard Cloak wp-wizard-cloak allows Reflected XSS.This issue affects WP Wizard Cloak: from n/a through <= 1.0.1.
Affected versions
max 1.0.1.
Status
vulnerable
Previous vulnerability researches
Remove Duplicate Posts (1f5faa66dc6d492718ce5db9c3895b5840416340) , Jun 07, 2024
Remove Duplicate Posts (CVE-2023-29237) , Jun 10, 2024
New vulnerability
Stop Spammers Security | Block Spam Users, Comments, Forms (CVE-2025-14795) , Feb 27, 2026
Slider Responsive Slideshow &#8211; Image slider, Gallery slideshow (CVE-2026-22346) , Feb 27, 2026
Endless Posts Navigation (CVE-2026-25332) , Feb 27, 2026
Eleblog &#8211; Elementor Blog And Magazine Addons (CVE-2025-69374) , Feb 27, 2026
Extensive VC Addons for WPBakery page builder (CVE-2025-60087) , Feb 27, 2026