cleantalk
Vulnerabilities and Security Researches

Variable Inspector, CVE-2025-26914

CVE, Research URL

CVE-2025-26914

Home page URL

Security reports for Variable Inspector

Application

Variable Inspector

Published on
Mar 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bowo Variable Inspector allows Reflected XSS. This issue affects Variable Inspector: from n/a through 2.6.2.
Affected versions
Min -, max 2.6.3.
Status
vulnerable
Previous vulnerability researches
Variable Inspector (f0a6fc147fec058c0a0720c4c9b6593fce550a55) , Jun 07, 2024
Variable Inspector (CVE-2025-32229) , Apr 05, 2025
Variable Inspector (CVE-2025-26914) , Mar 04, 2025
New vulnerability
Sign-up Sheets (CVE-2025-26996) , Apr 17, 2025
Cart66 Cloud :: WordPress Ecommerce The Easy Way (CVE-2025-32653) , Apr 17, 2025
C9 Blocks (CVE-2025-26951) , Apr 17, 2025
Widget for Social Page Feeds (CVE-2024-13207) , Apr 17, 2025
WP User Profiles (CVE-2025-31524) , Apr 17, 2025