MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more, CVE-2025-24757

CVE, Research URL: CVE-2025-24757
Home page URL: Security reports for MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more
Application: MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more
Published on: Jul 04, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Long Watch Studio MyRewards allows Stored XSS. This issue affects MyRewards: from n/a through 5.4.13.1.
Affected versions: Min -, max 5.4.14.
Status: vulnerable

MyRewards &#8211; Loyalty Points and Rewards for WooCommerce &#8211; Reward orders, referrals, product reviews and more, CVE-2025-24757