cleantalk
Vulnerabilities and Security Researches

Effect Maker, CVE-2025-68867

CVE, Research URL

CVE-2025-68867

Home page URL

Security reports for Effect Maker

Application

Effect Maker

Published on
Jan 08, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in anibalwainstein Effect Maker effect-maker allows DOM-Based XSS.This issue affects Effect Maker: from n/a through <= 1.2.1.
Affected versions
max 1.2.1.
Status
vulnerable
Previous vulnerability researches
WC Fields Factory (CVE-2023-0277) , Jun 07, 2024
WC Fields Factory (6cc027737736ffa5a4ad7d18f7aacab3368b4dae) , Jun 07, 2024
New vulnerability
Maximum Products per User for WooCommerce (CVE-2025-62096) , Jan 11, 2026
WPLG Default Mail From (CVE-2025-14138) , Jan 11, 2026
Accordion (CVE-2025-69350) , Jan 11, 2026
Import into Easy Property Listings (CVE-2025-62112) , Jan 11, 2026
HelloLeads CRM Form Shortcode (CVE-2025-12696) , Jan 11, 2026