cleantalk
Vulnerabilities and Security Researches

Top 10 – WordPress Popular posts by WebberZone, CVE-2025-47509

CVE, Research URL

CVE-2025-47509

Home page URL

Security reports for Top 10 – WordPress Popular posts by WebberZone

Application

Top 10 – WordPress Popular posts by WebberZone

Published on
May 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ajay Top 10 allows Stored XSS. This issue affects Top 10: from n/a through 4.1.0.
Affected versions
Min -, max 4.1.1.
Status
vulnerable
Previous vulnerability researches
Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop (CVE-2021-24679) , Jun 07, 2024
Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop (CVE-2022-4118) , Jun 07, 2024
Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop (CVE-2025-26541) , Mar 27, 2025
Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop (CVE-2025-26535) , Mar 05, 2025
New vulnerability
EUCookieLaw (CVE-2025-3897) , May 10, 2025
Frontend Login and Registration Blocks (CVE-2025-3605) , May 10, 2025
WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg (CVE-2025-4206) , May 10, 2025
Top 10 – WordPress Popular posts by WebberZone (CVE-2025-47509) , May 09, 2025
Easy Replace Image (CVE-2025-47483) , May 09, 2025