cleantalk
Vulnerabilities and Security Researches

Advanced Typekit, CVE-2025-31622

CVE, Research URL

CVE-2025-31622

Home page URL

Security reports for Advanced Typekit

Application

Advanced Typekit

Published on
Apr 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Utkarsh Kukreti Advanced Typekit allows Stored XSS. This issue affects Advanced Typekit: from n/a through 1.0.1.
Affected versions
Min -, max 1.0.1.
Status
vulnerable
Previous vulnerability researches
wpShopGermany IT-RECHT KANZLEI (CVE-2025-30804) , Apr 03, 2025
wpShopGermany IT-RECHT KANZLEI (CVE-2023-37993) , Jun 07, 2024
New vulnerability
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-2941) , Apr 05, 2025
UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget, Menu Builder, Anywhere Element (CVE-2025-32264) , Apr 05, 2025
Official CleverReach® Plugin for WooCommerce (CVE-2025-32241) , Apr 05, 2025
Rollbar (CVE-2025-32250) , Apr 05, 2025
Doppler Forms (CVE-2025-32165) , Apr 05, 2025