cleantalk
Vulnerabilities and Security Researches

Nested Pages, CVE-2025-24579

CVE, Research URL

CVE-2025-24579

Home page URL

Security reports for Nested Pages

Application

Nested Pages

Published on
Jan 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kyle Phillips Nested Pages allows Stored XSS. This issue affects Nested Pages: from n/a through 3.2.9.
Affected versions
Min -, max 3.2.10.
Status
vulnerable
Previous vulnerability researches
Nested Pages (CVE-2024-5943) , Jul 06, 2024
Nested Pages (CVE-2025-24579) , Jan 25, 2025
Nested Pages (CVE-2025-0718) , May 08, 2025
Nested Pages (CVE-2023-49195) , Jun 07, 2024
Nested Pages (CVE-2021-38343) , Jun 07, 2024
New vulnerability
CBX Map for Google Map & OpenStreetMap (CVE-2025-47669) , May 09, 2025
Bold Page Builder (CVE-2025-47488) , May 09, 2025
Bold Page Builder (CVE-2025-47525) , May 09, 2025
Blocksy (CVE-2025-47465) , May 08, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-47493) , May 08, 2025