cleantalk
Vulnerabilities and Security Researches

EC Stars Rating, CVE-2025-53296

CVE, Research URL

CVE-2025-53296

Home page URL

Security reports for EC Stars Rating

Application

EC Stars Rating

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ecoal95 EC Stars Rating allows Stored XSS. This issue affects EC Stars Rating: from n/a through 1.0.11.
Affected versions
Min -, max 1.0.11.
Status
vulnerable
Previous vulnerability researches
Splash Popup for WooCommerce (978edf968cc1bb14ad6e4fc2a47804615027039d) , Jun 07, 2024
New vulnerability
Off-Canvas Sidebars & Menus (Slidebars) (CVE-2025-49290) , Jul 03, 2025
Accept Stripe Payments Using Contact Form 7 (CVE-2025-53309) , Jul 03, 2025
Opal Estate Pro – Property Management and Submission (CVE-2025-6934) , Jul 03, 2025
TM Replace Howdy (CVE-2025-49972) , Jul 03, 2025
VG WORT METIS (CVE-2025-50039) , Jul 03, 2025