cleantalk
Vulnerabilities and Security Researches

WP Activity Log, CVE-2023-50905

CVE, Research URL

CVE-2023-50905

Home page URL

Security reports for WP Activity Log

Application

WP Activity Log

Published on
Feb 29, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Melapress WP Activity Log allows Stored XSS.This issue affects WP Activity Log: from n/a through 4.6.1.
Affected versions
Min -, max 4.6.2.
Status
vulnerable
Previous vulnerability researches
WP Activity Log (CVE-2025-0767) , Mar 05, 2025
WP Activity Log (CVE-2025-0924) , Feb 17, 2025
WP Activity Log (CVE-2014-5072) , Jun 07, 2024
WP Activity Log (CVE-2018-8719) , Jun 07, 2024
WP Activity Log (CVE-2023-2285) , Jun 07, 2024
New vulnerability
Post Rating and Review (CVE-2025-6538) , Jun 27, 2025
WP Masonry & Infinite Scroll (CVE-2025-5488) , Jun 27, 2025
Modern Design Library (CVE-2025-5842) , Jun 27, 2025
FastBook – Responsive Appointment Booking and Scheduling System (CVE-2025-25173) , Jun 27, 2025
Zapier for WordPress (CVE-2025-50010) , Jun 27, 2025