cleantalk
Vulnerabilities and Security Researches

Team Section block – Showcase team members in various layouts and designs., CVE-2025-26949

CVE, Research URL

CVE-2025-26949

Home page URL

Security reports for Team Section block – Showcase team members in various layouts and designs.

Application

Team Section block – Showcase team members in various layouts and designs.

Published on
Feb 25, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Team Section Block allows Stored XSS. This issue affects Team Section Block: from n/a through 1.0.9.
Affected versions
max 1.1.0.
Status
vulnerable
Previous vulnerability researches
Team Section block – Showcase team members in various layouts and designs. (CVE-2026-0833) , Apr 15, 2026
Team Section block – Showcase team members in various layouts and designs. (CVE-2025-26949) , Feb 27, 2025
New vulnerability
WP App Bar (CVE-2026-1074) , Apr 16, 2026
EM Cost Calculator (CVE-2026-2506) , Apr 16, 2026
GetGenie – Ai Content Writer with Keyword Research and Competitor Analysis (CVE-2026-1003) , Apr 16, 2026
AI ChatBot with ChatGPT and Content Generator by AYS (CVE-2026-1336) , Apr 16, 2026
Sphere Manager (CVE-2026-1905) , Apr 16, 2026