cleantalk
Vulnerabilities and Security Researches

Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen, CVE-2023-1890

CVE, Research URL

CVE-2023-1890

Home page URL

Security reports for Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen

Application

Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen

Published on
May 15, 2023
Research Description
The Tablesome WordPress plugin before 1.0.9 does not escape various generated URLs, before outputting them in attributes when some notices are displayed, leading to Reflected Cross-Site Scripting
Affected versions
max 1.0.15.
Status
vulnerable
Previous vulnerability researches
Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen (CVE-2022-4974) , Nov 15, 2024
Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen (CVE-2023-1890) , Jun 07, 2024
Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen (CVE-2024-29110) , Jun 07, 2024
Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen (CVE-2024-31388) , Jun 07, 2024
Tablesome – Responsive Table, Email Log, Form Automation – Contact Form 7, Elementor, WPForms, Gravity Forms, Fluen (c20619462e6ffeb5614bfd5483ca5b525b7c1fa6) , Jun 07, 2024
New vulnerability
Favorites (CVE-2025-60202) , Nov 11, 2025
Child Themes (CVE-2025-52755) , Nov 11, 2025
Premmerce Wishlist for WooCommerce (CVE-2025-60191) , Nov 11, 2025
LinkedIn Resume (CVE-2025-12402) , Nov 11, 2025
EM Beer Manager (CVE-2025-11724) , Nov 11, 2025