cleantalk
Vulnerabilities and Security Researches

افزونه پیامک ووکامرس Persian WooCommerce SMS, CVE-2026-22352

CVE, Research URL

CVE-2026-22352

Home page URL

Security reports for افزونه پیامک ووکامرس Persian WooCommerce SMS

Application

افزونه پیامک ووکامرس Persian WooCommerce SMS

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PersianScript Persian Woocommerce SMS persian-woocommerce-sms allows Reflected XSS.This issue affects Persian Woocommerce SMS: from n/a through <= 7.1.1.
Affected versions
max 7.1.1.
Status
vulnerable
Previous vulnerability researches
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2024-53819) , Dec 11, 2024
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2021-24787) , Jun 07, 2024
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2026-25364) , Feb 27, 2026
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2025-64227) , Jan 10, 2026
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2025-64229) , Nov 11, 2025
New vulnerability
Privacy Policy Generator, Terms &amp; Conditions Generator WordPress Plugin : WPLegalPages (CVE-2025-67974) , Feb 28, 2026
Inpersttion For Theme (CVE-2025-52744) , Feb 28, 2026
JAMstack Deployments (CVE-2026-25409) , Feb 28, 2026
WPshop 2 &#8211; E-Commerce (CVE-2025-69383) , Feb 28, 2026
WP Cookie Consent ( for GDPR, CCPA &amp; ePrivacy ) (CVE-2025-11754) , Feb 28, 2026