cleantalk
Vulnerabilities and Security Researches

Document Library Lite, CVE-2025-67986

CVE, Research URL

CVE-2025-67986

Home page URL

Security reports for Document Library Lite

Application

Document Library Lite

Published on
Dec 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Barn2 Plugins Document Library Lite document-library-lite allows DOM-Based XSS.This issue affects Document Library Lite: from n/a through <= 1.1.7.
Affected versions
max 1.1.7.
Status
vulnerable
Previous vulnerability researches
SKT Skill Bar (CVE-2025-66090) , Dec 11, 2025
SKT Skill Bar (CVE-2024-38698) , Jul 15, 2024
SKT Skill Bar (CVE-2025-47482) , May 09, 2025
SKT Skill Bar (CVE-2025-26880) , Apr 15, 2025
New vulnerability
Review Disclaimer (CVE-2025-67628) , Jan 10, 2026
MAS Videos (CVE-2025-62753) , Jan 10, 2026
Postem Ipsum (CVE-2025-14397) , Jan 10, 2026
WH Tweaks (CVE-2025-67630) , Jan 10, 2026
Advanced FAQ Manager (CVE-2025-67556) , Jan 10, 2026