cleantalk
Vulnerabilities and Security Researches

Easy Woocommerce Customizer, CVE-2025-59006

CVE, Research URL

CVE-2025-59006

Home page URL

Security reports for Easy Woocommerce Customizer

Application

Easy Woocommerce Customizer

Published on
Oct 22, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themebon Easy Woocommerce Customizer easy-woocommerce-customizer allows Reflected XSS.This issue affects Easy Woocommerce Customizer: from n/a through <= 1.0.2.
Affected versions
max 1.0.2.
Status
vulnerable
Previous vulnerability researches
WPCode Content Ratio (CVE-2025-49944) , Nov 10, 2025
New vulnerability
AppPresser &#8211; Mobile App Framework (CVE-2025-11881) , Nov 11, 2025
Import from YML (CVE-2025-64232) , Nov 11, 2025
WP Customer Area (CVE-2025-60201) , Nov 11, 2025
SMS for WordPress (CVE-2025-12580) , Nov 10, 2025
WC Return products (CVE-2025-59004) , Nov 10, 2025