cleantalk
Vulnerabilities and Security Researches

WPAdverts – Classifieds Plugin, CVE-2025-54024

CVE, Research URL

CVE-2025-54024

Home page URL

Security reports for WPAdverts – Classifieds Plugin

Application

WPAdverts – Classifieds Plugin

Published on
Jul 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Greg Winiarski WPAdverts allows DOM-Based XSS. This issue affects WPAdverts: from n/a through 2.2.5.
Affected versions
Min -, max 2.2.6.
Status
vulnerable
Previous vulnerability researches
SMTP for SendGrid – YaySMTP (CVE-2025-0918) , Feb 24, 2025
SMTP for SendGrid – YaySMTP (CVE-2025-48301) , Jul 18, 2025
New vulnerability
Vchasno Kasa (CVE-2025-6720) , Jul 19, 2025
Vchasno Kasa (CVE-2025-6721) , Jul 19, 2025
Media Library Assistant (CVE-2025-7035) , Jul 19, 2025
Wallet System for WooCommerce – Digital Wallet, Cashback Rewards, Recharge User Wallets, View Transaction History (CVE-2025-54041) , Jul 19, 2025
Chatbox Manager (CVE-2025-48167) , Jul 19, 2025