cleantalk
Vulnerabilities and Security Researches

WP Multi Store Locator, CVE-2025-24680

CVE, Research URL

CVE-2025-24680

Home page URL

Security reports for WP Multi Store Locator

Application

WP Multi Store Locator

Published on
Jan 27, 2025
Research Description
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in WpMultiStoreLocator WP Multi Store Locator allows Reflected XSS. This issue affects WP Multi Store Locator: from n/a through 2.4.7.
Affected versions
Min -, max 2.5.1.
Status
vulnerable
Previous vulnerability researches
WP Multi Store Locator (CVE-2024-12475) , Jan 05, 2025
WP Multi Store Locator (CVE-2025-31888) , Apr 03, 2025
WP Multi Store Locator (CVE-2025-24680) , Jan 29, 2025
WP Multi Store Locator (CVE-2023-0152) , Jun 07, 2024
WP Multi Store Locator (CVE-2025-28898) , Mar 28, 2025
New vulnerability
PowerPress Podcasting plugin by Blubrry (CVE-2025-32691) , Apr 10, 2025
PowerPress Podcasting plugin by Blubrry (CVE-2025-32690) , Apr 10, 2025
WordPress Webinar Plugin – WebinarPress (CVE-2025-32693) , Apr 10, 2025
Brizy – Page Builder (CVE-2025-32198) , Apr 10, 2025
Nearby Locations (CVE-2025-32128) , Apr 10, 2025