cleantalk
Vulnerabilities and Security Researches

WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc, 66d2a48446049f0a84abb0461d3eee433fdde3d1

CVE, Research URL

66d2a48446049f0a84abb0461d3eee433fdde3d1

Home page URL

Security reports for WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc

Application

WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc

Published on
Jun 30, 2021
Research Description
WSMS (formerly WP SMS) – SMS &amp; MMS Notifications with OTP and 2FA for WooCommerce [wp-sms] < 5.4.9.1 WordPress WP SMS plugin <= 5.4.9 - Reflected Cross-Site Scripting (XSS) vulnerability Reflected Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress WP SMS plugin (versions <= 5.4.9).
Affected versions
max 5.4.9.1.
Status
vulnerable
Previous vulnerability researches
WordPress Connect (feaf7c04-4991-4c34-bfbf-d849a9e38599) , Jun 16, 2026
WordPress Connect (5b2d1beeae1454c4c4f60eac4f084fd504540b28) , Jun 16, 2026
WordPress Connect (b326cdbf2040aa8eeb688f951965600d9b290062) , Jun 06, 2024
New vulnerability
Multi Page Auto Advance for Gravity Forms (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Multi Page Auto Advance for Gravity Forms (d14c12884874d0e30bd3a312d43044fa4fe75582) , Jun 16, 2026
Store Locator for WordPress with Google Maps – LotsOfLocales (f426f4bed17a59fb2e9150a529c7b250c2730586) , Jun 16, 2026
Store Locator for WordPress with Google Maps – LotsOfLocales (4fa71b8c7d29c3050b951adfff5bf47b58228f4e) , Jun 16, 2026
Store Locator for WordPress with Google Maps – LotsOfLocales (2bee561a-8cf7-430b-9c72-2049d9776e34) , Jun 16, 2026