cleantalk
Vulnerabilities and Security Researches

WP Docs, CVE-2024-56288

CVE, Research URL

CVE-2024-56288

Home page URL

Security reports for WP Docs

Application

WP Docs

Published on
Jan 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fahad Mahmood WP Docs allows Stored XSS.This issue affects WP Docs: from n/a through 2.2.1.
Affected versions
max 2.2.2.
Status
vulnerable
Previous vulnerability researches
WP Docs (e8154019cb3a9312c465490fd4032d0bd8b42082) , Jun 06, 2024
WP Docs (CVE-2023-32106) , Jun 06, 2024
WP Docs (CVE-2024-56288) , Jan 08, 2025
WP Docs (CVE-2023-30873) , Jun 10, 2024
WP Docs (CVE-2024-35695) , Jun 10, 2024
New vulnerability
Contact Form Builder Plugin: Multi Step Contact Form, Payment Form, Custom Contact Form Plugin by Bit Form (CVE-2026-25418) , Feb 28, 2026
Image Photo Gallery Final Tiles Grid (CVE-2026-25375) , Feb 28, 2026
Share This Image (CVE-2026-25010) , Feb 28, 2026
Bold Page Builder (CVE-2026-25451) , Feb 28, 2026
Bold Page Builder (CVE-2025-13463) , Feb 28, 2026