cleantalk
Vulnerabilities and Security Researches

teachPress, CVE-2023-36501

CVE, Research URL

CVE-2023-36501

Home page URL

Security reports for teachPress

Application

teachPress

Published on
Jul 25, 2023
Research Description
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Michael Winkler teachPress plugin <= 9.0.2 versions.
Affected versions
Min -, max 9.0.6.
Status
vulnerable
Previous vulnerability researches
teachPress (CVE-2025-32149) , Apr 06, 2025
teachPress (CVE-2023-52129) , Jun 06, 2024
teachPress (CVE-2023-48755) , Jun 06, 2024
teachPress (CVE-2023-49163) , Jun 06, 2024
teachPress (CVE-2023-22704) , Jun 06, 2024
New vulnerability
MelaPress Login Security (CVE-2025-39565) , Apr 18, 2025
WP_DEBUG Toggle (CVE-2025-32561) , Apr 18, 2025
ActiveDEMAND (CVE-2025-39513) , Apr 18, 2025
Rescue Shortcodes (CVE-2025-39528) , Apr 18, 2025
Right Click Disable OR Ban (CVE-2025-39548) , Apr 18, 2025