cleantalk

Vulnerabilities and Security Researches

Security report for CVE WordPress Auction Plugin > CVE-2024-54207

CVE, Research URL

CVE-2024-54207

Home page URL

Security reports for WordPress Auction Plugin

Application

WordPress Auction Plugin

Published on
Dec 06, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Owen Cutajar & Hyder Jaffari WordPress Auction Plugin allows Stored XSS.This issue affects WordPress Auction Plugin: from n/a through 3.7.
Affected versions
Min -, max 3.7.
Status
vulnerable
Previous vulnerability researches
WordPress Auction Plugin (CVE-2024-54207) , Dec 08, 2024
WordPress Auction Plugin (CVE-2024-51615) , Dec 08, 2024
WordPress Auction Plugin (CVE-2024-8857) , Jan 22, 2025
WordPress Auction Plugin (CVE-2024-8855) , Jan 22, 2025
WordPress Auction Plugin (CVE-2025-22349) , Jan 09, 2025
New vulnerability
Thim Elementor Kit (CVE-2025-24725) , Jan 25, 2025
WP Easy Post Mailer (CVE-2025-23956) , Jan 25, 2025
Plestar Directory Listing (CVE-2025-23723) , Jan 25, 2025
WP Query Creator (CVE-2025-22264) , Jan 25, 2025
WpDevTool (CVE-2025-23624) , Jan 25, 2025