cleantalk
Vulnerabilities and Security Researches

Knowledge Base – Knowledge Base Maker, CVE-2025-52791

CVE, Research URL

CVE-2025-52791

Home page URL

Security reports for Knowledge Base – Knowledge Base Maker

Application

Knowledge Base – Knowledge Base Maker

Published on
Jun 20, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in devfelixmoira Knowledge Base – Knowledge Base Maker allows Stored XSS. This issue affects Knowledge Base – Knowledge Base Maker: from n/a through 1.1.8.
Affected versions
Min -, max 1.1.8.
Status
vulnerable
Previous vulnerability researches
WP Admin UI Customize (CVE-2024-53278) , Nov 28, 2024
WP Admin UI Customize (CVE-2022-3824) , Jun 07, 2024
New vulnerability
GiveWP – Donation Plugin and Fundraising Platform (CVE-2025-4571) , Jun 28, 2025
Knowledge Base – Knowledge Base Maker (CVE-2025-52791) , Jun 27, 2025
Zara 4 Image Compression (CVE-2025-49969) , Jun 27, 2025
Woocommerce Line Notify (CVE-2025-30972) , Jun 27, 2025
Simple User Registration (CVE-2025-4334) , Jun 27, 2025