cleantalk
Vulnerabilities and Security Researches

bbpress Simple Advert Units, CVE-2025-53228

CVE, Research URL

CVE-2025-53228

Home page URL

Security reports for bbpress Simple Advert Units

Application

bbpress Simple Advert Units

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issue affects bbpress Simple Advert Units: from n/a through <= 0.41.
Affected versions
max 0.41.
Status
vulnerable
Previous vulnerability researches
Visual Link Preview (CVE-2025-11987) , Nov 11, 2025
Visual Link Preview (CVE-2026-24984) , Feb 27, 2026
Visual Link Preview (CVE-2021-24635) , Jun 07, 2024
New vulnerability
LA-Studio Element Kit for Elementor (CVE-2026-24947) , Feb 28, 2026
Shortcoder — Create Shortcodes for Anything (CVE-2026-27074) , Feb 28, 2026
iMoney (CVE-2025-69392) , Feb 28, 2026
Educare &#8211; Students &amp; Result Management System (CVE-2025-67978) , Feb 28, 2026
Paid Membership Subscriptions &#8211; Effortless Memberships, Recurring Payments &amp; Content Restriction (CVE-2025-68514) , Feb 28, 2026