cleantalk
Vulnerabilities and Security Researches

Content Manager Light, CVE-2025-24771

CVE, Research URL

CVE-2025-24771

Home page URL

Security reports for Content Manager Light

Application

Content Manager Light

Published on
Jul 04, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OTWthemes Content Manager Light allows Reflected XSS. This issue affects Content Manager Light: from n/a through 3.2.
Affected versions
Min -, max 3.2.
Status
vulnerable
Previous vulnerability researches
WP Quick Post Duplicator (8c412c0666baee67ae3ee0f0eb18d8d95123aee2) , Jun 07, 2024
WP Quick Post Duplicator (CVE-2023-31214) , Jun 10, 2024
New vulnerability
Radio Station by netmix® – Manage and play your Show Schedule in WordPress! (CVE-2025-53568) , Jul 05, 2025
RD Contacto (CVE-2025-5933) , Jul 05, 2025
AiBud WP – ChatGPT, OpenAI, Content & Image Generator WordPress plugin (CVE-2025-23968) , Jul 05, 2025
WP Permalink Translator (CVE-2025-53274) , Jul 05, 2025
Soumettre.fr (CVE-2025-4654) , Jul 05, 2025