cleantalk
Vulnerabilities and Security Researches

SyntaxHighlighter Evolved, c494dc7f95d72cc819f6f0adec43f9ed8934a216

CVE, Research URL

c494dc7f95d72cc819f6f0adec43f9ed8934a216

Home page URL

Security reports for SyntaxHighlighter Evolved

Application

SyntaxHighlighter Evolved

Published on
Oct 23, 2019
Research Description
SyntaxHighlighter Evolved [syntaxhighlighter] < 3.1.10 WordPress SyntaxHighlighter Evolved plugin <= 3.5.0 - Stored Cross-Site Scripting (XSS) vulnerability Stored Cross-Site Scripting (XSS) vulnerability found by Matt Barry (WordFence) in WordPress SyntaxHighlighter Evolved plugin (versions <= 3.5.0).
Affected versions
Min -, max 3.1.10.
Status
vulnerable
Previous vulnerability researches
CK and SyntaxHighlighter (CVE-2024-54407) , Dec 18, 2024
SyntaxHighlighter Evolved (CVE-2025-30903) , Apr 02, 2025
SyntaxHighlighter Evolved (c494dc7f95d72cc819f6f0adec43f9ed8934a216) , Jun 07, 2024
New vulnerability
EazyDocs &#8211; Most Powerful Knowledge base, wiki, Documentation Builder Plugin (easy docs, knowledgebase) (CVE-2025-32221) , Apr 11, 2025
Tutor LMS &#8211; eLearning and online course solution (CVE-2025-32230) , Apr 11, 2025
WP Project Manager &#8211; Task, team, and project management plugin featuring kanban board and gantt charts (CVE-2025-2541) , Apr 11, 2025
WP-Easy Menu (CVE-2025-32477) , Apr 11, 2025
User Registration Using Contact Form 7 (CVE-2025-32679) , Apr 11, 2025