cleantalk
Vulnerabilities and Security Researches

StaffList, CVE-2025-32255

CVE, Research URL

CVE-2025-32255

Home page URL

Security reports for StaffList

Application

StaffList

Published on
Apr 04, 2025
Research Description
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ERA404 StaffList allows Retrieve Embedded Sensitive Data. This issue affects StaffList: from n/a through 3.2.6.
Affected versions
Min -, max 3.2.6.
Status
vulnerable
Previous vulnerability researches
Chatbox Manager (CVE-2025-30790) , Mar 28, 2025
New vulnerability
Easy Contact (CVE-2025-30970) , Apr 08, 2025
DyaPress ERP/CRM (CVE-2025-30582) , Apr 08, 2025
Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links (CVE-2025-1264) , Apr 07, 2025
Advanced All in One Admin Search by WP Spotlight (CVE-2025-32261) , Apr 06, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC (CVE-2025-32219) , Apr 06, 2025