cleantalk
Vulnerabilities and Security Researches

StoryChief, f880d0ed5e5e8b5e0a198ccb03e9c96ca367991f

CVE, Research URL

f880d0ed5e5e8b5e0a198ccb03e9c96ca367991f

Home page URL

Security reports for StoryChief

Application

StoryChief

Published on
Aug 02, 2021
Research Description
StoryChief [story-chief] < 1.0.31 WordPress StoryChief plugin <= 1.0.30 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress StoryChief plugin (versions <= 1.0.30).
Affected versions
Min -, max 1.0.31.
Status
vulnerable
Previous vulnerability researches
StoryChief (f880d0ed5e5e8b5e0a198ccb03e9c96ca367991f) , Jun 07, 2024
StoryChief (CVE-2025-7441) , Aug 17, 2025
New vulnerability
Simple Login Log (CVE-2025-49438) , Aug 23, 2025
SensorPress (CVE-2025-49409) , Aug 23, 2025
Notice Bar (CVE-2025-49389) , Aug 23, 2025
Testimonial (CVE-2025-49410) , Aug 23, 2025
SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) (CVE-2025-8607) , Aug 23, 2025