cleantalk
Vulnerabilities and Security Researches

WP Edit, CVE-2025-53253

CVE, Research URL

CVE-2025-53253

Home page URL

Security reports for WP Edit

Application

WP Edit

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Josh WP Edit allows Stored XSS. This issue affects WP Edit: from n/a through 4.0.4.
Affected versions
Min -, max 4.0.4.
Status
vulnerable
Previous vulnerability researches
WDES Responsive Mobile Menu (CVE-2024-52414) , Nov 17, 2024
New vulnerability
EZ SQL Reports Shortcode Widget and DB Backup (CVE-2025-6462) , Jul 01, 2025
Related Products Manager for WooCommerce (CVE-2025-50045) , Jul 01, 2025
web-cam (CVE-2025-6540) , Jul 01, 2025
WPShapere Lite (CVE-2025-53317) , Jul 01, 2025
WP Edit (CVE-2025-53253) , Jul 01, 2025