cleantalk
Vulnerabilities and Security Researches

WPComplete, CVE-2026-42750

CVE, Research URL

CVE-2026-42750

Home page URL

Security reports for WPComplete

Application

WPComplete

Published on
May 27, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nexcess WPComplete wpcomplete allows Stored XSS.This issue affects WPComplete: from n/a through <= 2.9.5.4.
Affected versions
max 2.9.5.4.
Status
vulnerable
Previous vulnerability researches
Rank Math SEO with AI SEO Tools (CVE-2025-12714) , May 29, 2026
Rank Math SEO with AI SEO Tools (CVE-2023-23888) , Jun 07, 2024
Rank Math SEO with AI SEO Tools (CVE-2020-11514) , Jun 07, 2024
Rank Math SEO with AI SEO Tools (CVE-2020-11515) , Jun 07, 2024
Rank Math SEO with AI SEO Tools (CVE-2019-14786) , Jun 07, 2024
New vulnerability
Simple Divi Shortcode (CVE-2026-9714) , May 30, 2026
Link Whisper Free (CVE-2025-11262) , May 30, 2026
Breeze &#8211; WordPress Cache Plugin (CVE-2026-2128) , May 30, 2026
Frontend Admin by DynamiApps (CVE-2026-6226) , May 30, 2026
Frontend Admin by DynamiApps (CVE-2026-7802) , May 30, 2026