cleantalk
Vulnerabilities and Security Researches

Membership For WooCommerce – Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members wi, CVE-2025-39579

CVE, Research URL

CVE-2025-39579

Home page URL

Security reports for Membership For WooCommerce – Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members wi

Application

Membership For WooCommerce – Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members wi

Published on
Apr 16, 2025
Research Description
Membership For WooCommerce [membership-for-woocommerce] < 2.8.1 CVE-2025-39579 [en] Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Swings Membership For WooCommerce allows DOM-Based XSS. This issue affects Membership For WooCommerce: from n/a through 2.8.0.
Affected versions
Min -, max 2.8.1.
Status
vulnerable
Previous vulnerability researches
ShowTime Slideshow (CVE-2025-31444) , Apr 03, 2025
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025