cleantalk
Vulnerabilities and Security Researches

Simple Author Box, PSC-2026-64639

PSC, Research URL

PSC-2026-64639

Home page URL

Security reports for Simple Author Box

Application

Simple Author Box

Published on
Mar 30, 2026
Research Description
Author box plugins are security-relevant because they render user-controlled profile data across the site, often including author bio text, website links, and social profiles. If output encoding, access control, or request integrity is weak, these surfaces can become a path to stored XSS, unauthorized profile metadata exposure, or CSRF-driven settings changes. Simple Author Box version 2.59 has successfully completed the CleanTalk Plugin Security Certification process and received PSC-2026-64639, confirming that the plugin was reviewed from a secure code perspective with attention to the most common exploitation paths for author profile and bio display plugins.
Affected versions
Min 2.59, max 2.59.
Status
SAFE & CERTIFIED
Previous vulnerability researches
Simple Author Box , Mar 30, 2026
Simple Author Box (CVE-2023-3601) , Jun 07, 2024
Simple Author Box (8b7aa1417907f5ca7f22def8e70e2d23e5295ddf) , Jun 07, 2024
New vulnerability
File Manager Pro – Filester , Mar 30, 2026
Simple Author Box , Mar 30, 2026
Customizable WordPress Gallery Plugin – Modula Image Gallery , Mar 30, 2026
Speed Optimizer – The All-In-One WordPress Performance-Boosting Plugin , Mar 30, 2026
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026