cleantalk
Vulnerabilities and Security Researches

Latest Post Shortcode, CVE-2025-58609

CVE, Research URL

CVE-2025-58609

Home page URL

Security reports for Latest Post Shortcode

Application

Latest Post Shortcode

Published on
Sep 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Iulia Cazan Latest Post Shortcode allows Stored XSS. This issue affects Latest Post Shortcode: from n/a through 14.0.3.
Affected versions
Min -, max 14.10.
Status
vulnerable
Previous vulnerability researches
SEOPress for MainWP (CVE-2025-48298) , Jul 28, 2025
New vulnerability
StagTools (CVE-2025-58814) , Sep 07, 2025
Ai Auto Tool Content Writing Assistant (Bard Writer, ChatGPT ) All in One (CVE-2025-58829) , Sep 07, 2025
LA-Studio Element Kit for Elementor (CVE-2025-8360) , Sep 07, 2025
Job Board Manager (CVE-2025-58827) , Sep 07, 2025
WP likes (CVE-2025-58848) , Sep 07, 2025