cleantalk
Vulnerabilities and Security Researches

WP Cassify, CVE-2025-30771

CVE, Research URL

CVE-2025-30771

Home page URL

Security reports for WP Cassify

Application

WP Cassify

Published on
Mar 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alain-Aymerick FRANCOIS WP Cassify allows DOM-Based XSS. This issue affects WP Cassify: from n/a through 2.3.5.
Affected versions
Min -, max 2.3.6.
Status
vulnerable
Previous vulnerability researches
WP Cassify (CVE-2025-30771) , Mar 28, 2025
New vulnerability
Greek Multi Tool – Fix peralinks, accents, auto create menus and more (CVE-2025-30797) , Apr 03, 2025
Subscribe to Download – Download after Email Subscription Form WordPress Plugin (CVE-2025-30782) , Apr 03, 2025
User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin (CVE-2025-2594) , Apr 03, 2025
xili-dictionary (CVE-2025-30840) , Apr 03, 2025
Page Takeover (CVE-2025-31470) , Apr 03, 2025