cleantalk
Vulnerabilities and Security Researches

AWStats Script, 04452afe90f58782160386b70fcd9563b749d098

CVE, Research URL

04452afe90f58782160386b70fcd9563b749d098

Home page URL

Security reports for AWStats Script

Application

AWStats Script

Published on
Aug 17, 2025
Research Description
AWStats Script [awstats-script] <= 0.3 (unfixed + closed) WordPress AWStats Script Plugin <= 0.3 is vulnerable to Cross Site Scripting (XSS) <p>WordPress AWStats Script Plugin <= 0.3 is vulnerable to Cross Site Scripting (XSS)</p><p>Software: AWStats Script</p><p>Affected Version <= 0.3</p><p>CVE: CVE-2025-49890</p>
Affected versions
max 0.3.
Status
vulnerable
Previous vulnerability researches
WPvivid Backup for MainWP (ec00cf2f6a6757dc3371250c1689bf0e482f89f9) , Jun 16, 2026
WPvivid Backup for MainWP (2c3fbbc425bd92d0f969e669e6a4b8564997aa02) , Jun 16, 2026
WPvivid Backup for MainWP (CVE-2024-35664) , Jun 06, 2024
WPvivid Backup for MainWP (CVE-2024-1383) , Jun 06, 2024
New vulnerability
MasterStudy LMS WordPress Plugin – for Online Courses and Education (ec94093db88b154d60efe598d24bfd6f4844e90d) , Jun 16, 2026
MasterStudy LMS WordPress Plugin – for Online Courses and Education (9b4e341c2ec92e66350e8027601554ee2a863a3a) , Jun 16, 2026
MasterStudy LMS WordPress Plugin – for Online Courses and Education (c1205f27515b7932bb2cf9e3082131a62daafdfe) , Jun 16, 2026
MasterStudy LMS WordPress Plugin – for Online Courses and Education (f43455118aba6c7f086e83f8998f7de9f947fd1a) , Jun 16, 2026
WPBITS Addons For Elementor Page Builder (5d63984f64e2d907fb7992a8ff8ef8781dce2364) , Jun 16, 2026