cleantalk
Vulnerabilities and Security Researches

Logo Showcase, CVE-2025-58684

CVE, Research URL

CVE-2025-58684

Home page URL

Security reports for Logo Showcase

Application

Logo Showcase

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themepoints Logo Showcase logo-showcase allows Stored XSS.This issue affects Logo Showcase: from n/a through <= 4.0.1.
Affected versions
max 3.0.9.
Status
vulnerable
Previous vulnerability researches
Shipment Tracker for Woocommerce (CVE-2025-24586) , Apr 20, 2025
Shipment Tracker for Woocommerce (CVE-2026-39540) , Apr 23, 2026
New vulnerability
WooCommerce Affiliate Plugin &#8211; Coupon Affiliates (CVE-2025-59567) , Apr 24, 2026
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2025-8388) , Apr 24, 2026
Easy Quotes (CVE-2025-58681) , Apr 24, 2026
HubSpot &#8211; CRM, Email Marketing, Live Chat, Forms &amp; Analytics (CVE-2025-11762) , Apr 24, 2026
Custom Blocks Constructor &#8211; Lazy Blocks (CVE-2025-58258) , Apr 24, 2026