cleantalk
Vulnerabilities and Security Researches

RSS Feed Pro, CVE-2025-53581

CVE, Research URL

CVE-2025-53581

Home page URL

Security reports for RSS Feed Pro

Application

RSS Feed Pro

Published on
Aug 15, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in artiosmedia RSS Feed Pro allows Stored XSS. This issue affects RSS Feed Pro: from n/a through 1.1.8.
Affected versions
Min -, max 1.1.9.
Status
vulnerable
Previous vulnerability researches
Woocommerce Blocks – Woolook (CVE-2024-54375) , Dec 19, 2024
Woocommerce Blocks – Woolook (CVE-2024-8393) , Aug 17, 2025
New vulnerability
Dropshix (CVE-2025-49898) , Aug 18, 2025
Vertical scroll slideshow gallery v2 (CVE-2025-49897) , Aug 18, 2025
Auto Image Attributes From Filename With Bulk Updater (Add Alt Text, Image Title For Image SEO) , Aug 18, 2025
ServerBuddy by PluginBuddy.com (CVE-2025-49895) , Aug 18, 2025
Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin (CVE-2025-49869) , Aug 18, 2025