cleantalk
Vulnerabilities and Security Researches

Scriptless Social Sharing, CVE-2025-39529

CVE, Research URL

CVE-2025-39529

Home page URL

Security reports for Scriptless Social Sharing

Application

Scriptless Social Sharing

Published on
Apr 16, 2025
Research Description
Scriptless Social Sharing [scriptless-social-sharing] < 3.3.0 CVE-2025-39529 [en] Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Robin Cornett Scriptless Social Sharing allows Stored XSS. This issue affects Scriptless Social Sharing: from n/a through 3.2.4.
Affected versions
Min -, max 3.3.0.
Status
vulnerable
Previous vulnerability researches
Scriptless Social Sharing (CVE-2023-0377) , Jun 06, 2024
Scriptless Social Sharing (CVE-2025-39529) , Apr 18, 2025
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025