cleantalk
Vulnerabilities and Security Researches

Custom Related Posts, CVE-2025-46227

CVE, Research URL

CVE-2025-46227

Home page URL

Security reports for Custom Related Posts

Application

Custom Related Posts

Published on
Apr 22, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brecht Custom Related Posts allows Stored XSS. This issue affects Custom Related Posts: from n/a through 1.7.4.
Affected versions
Min -, max 1.7.5.
Status
vulnerable
Previous vulnerability researches
WP Import Export Lite (CVE-2022-0236) , Jun 07, 2024
WP Import Export Lite (CVE-2024-31308) , Jun 07, 2024
WP Import Export Lite (CVE-2025-2839) , Apr 23, 2025
New vulnerability
Flynax Bridge (CVE-2025-3604) , Apr 25, 2025
Simple Custom CSS and JS , Apr 25, 2025
Verification SMS with TargetSMS (CVE-2025-3776) , Apr 25, 2025
SKT Blocks – Gutenberg based Page Builder (CVE-2025-46235) , Apr 24, 2025
Message Filter for Contact Form 7 (CVE-2025-46252) , Apr 24, 2025