cleantalk
Vulnerabilities and Security Researches

WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc, CVE-2023-32742

CVE, Research URL

CVE-2023-32742

Home page URL

Security reports for WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc

Application

WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc

Published on
Aug 30, 2023
Research Description
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in VeronaLabs WP SMS plugin <= 6.1.4 versions.
Affected versions
max 6.2.0.
Status
vulnerable
Previous vulnerability researches
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (CVE-2024-43331) , Aug 20, 2024
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (CVE-2025-62006) , Nov 11, 2025
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (CVE-2023-6981) , Jun 07, 2024
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (CVE-2021-24561) , Jun 07, 2024
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (CVE-2023-6980) , Jun 07, 2024
New vulnerability
Premmerce User Roles (CVE-2025-64291) , Nov 11, 2025
Premmerce User Roles (CVE-2025-62883) , Nov 11, 2025
Premmerce User Roles (CVE-2025-60193) , Nov 11, 2025
WP-Force Images Download (CVE-2025-11809) , Nov 11, 2025
Everest Backup &#8211; WordPress Cloud Backup, Migration, Restore &amp; Cloning Plugin (CVE-2025-11380) , Nov 11, 2025