cleantalk
Vulnerabilities and Security Researches

Sitekit, CVE-2025-30776

CVE, Research URL

CVE-2025-30776

Home page URL

Security reports for Sitekit

Application

Sitekit

Published on
Mar 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webvitaly Sitekit allows Stored XSS. This issue affects Sitekit: from n/a through 1.8.
Affected versions
Min -, max 1.9.
Status
vulnerable
Previous vulnerability researches
Sitekit (CVE-2023-27628) , Jun 07, 2024
Sitekit (CVE-2023-5071) , Jun 07, 2024
Sitekit (CVE-2024-29111) , Jun 07, 2024
Sitekit (CVE-2025-30776) , Mar 28, 2025
New vulnerability
TuriTop Booking System (CVE-2025-31541) , Apr 05, 2025
CF7 Spreadsheets (CVE-2025-31536) , Apr 05, 2025
Awesome Logos (CVE-2025-31899) , Apr 05, 2025
Flickr Photostream (CVE-2025-31467) , Apr 05, 2025
CM Header & Footer Script Loader – Insert Script Plugin (CVE-2025-31091) , Apr 05, 2025