cleantalk
Vulnerabilities and Security Researches

User Language Switch, CVE-2025-49064

CVE, Research URL

CVE-2025-49064

Home page URL

Security reports for User Language Switch

Application

User Language Switch

Published on
Aug 14, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webilop User Language Switch user-language-switch allows Reflected XSS.This issue affects User Language Switch: from n/a through <= 1.6.10.
Affected versions
max 1.6.10.
Status
vulnerable
Previous vulnerability researches
User Language Switch (CVE-2025-49064) , Aug 12, 2025
User Language Switch (CVE-2026-0735) , Apr 15, 2026
User Language Switch (CVE-2026-0745) , Apr 15, 2026
New vulnerability
AMP Enhancer &#8211; Compatibility Layer for Official AMP Plugin (CVE-2026-2027) , Apr 16, 2026
WaveSurfer-WP (CVE-2026-1909) , Apr 16, 2026
xmlrpc attacks blocker (CVE-2026-2502) , Apr 16, 2026
Templately – Gutenberg &amp; Elementor Template Library: 5000+ Free &amp; Pro Ready Templates &amp; Cloud! (CVE-2026-0831) , Apr 16, 2026
iRobots.txt SEO (CVE-2025-68840) , Apr 16, 2026