cleantalk
Vulnerabilities and Security Researches

WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible, CVE-2024-29929

CVE, Research URL

CVE-2024-29929

Home page URL

Security reports for WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible

Application

WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible

Published on
Mar 27, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WC Lovers WCFM – Frontend Manager for WooCommerce allows Stored XSS.This issue affects WCFM – Frontend Manager for WooCommerce: from n/a through 6.7.8.
Affected versions
Min -, max 6.7.9.
Status
vulnerable
Previous vulnerability researches
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible (CVE-2025-3780) , Jul 12, 2025
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible (CVE-2022-4938) , Jun 06, 2024
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible (CVE-2022-4937) , Jun 06, 2024
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible (CVE-2024-29929) , Jun 06, 2024
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible (CVE-2021-24835) , Jun 06, 2024
New vulnerability
WP Register Profile With Shortcode (CVE-2025-4593) , Jul 13, 2025
Simple File List (CVE-2025-34085) , Jul 13, 2025
Pakke Envíos (CVE-2025-52819) , Jul 13, 2025
Gwolle Guestbook (CVE-2025-5807) , Jul 13, 2025
Tennis Court Bookings (CVE-2025-52787) , Jul 13, 2025