cleantalk
Vulnerabilities and Security Researches

xili-tidy-tags, CVE-2025-58240

CVE, Research URL

CVE-2025-58240

Home page URL

Security reports for xili-tidy-tags

Application

xili-tidy-tags

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michel - xiligroup dev xili-tidy-tags xili-tidy-tags allows Stored XSS.This issue affects xili-tidy-tags: from n/a through <= 1.12.06.
Affected versions
max 1.12.06.
Status
vulnerable
Previous vulnerability researches
xili-tidy-tags (CVE-2024-9357) , Nov 14, 2024
xili-tidy-tags (CVE-2025-47680) , May 14, 2025
xili-tidy-tags (CVE-2025-58240) , Apr 25, 2026
xili-tidy-tags (CVE-2022-47448) , Jun 07, 2024
New vulnerability
Verowa Connect (CVE-2025-58257) , Apr 25, 2026
Image Editor by Pixo (CVE-2025-58232) , Apr 25, 2026
WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce (CVE-2025-2799) , Apr 25, 2026
Kubio AI Page Builder (CVE-2025-8487) , Apr 25, 2026
PlayerJS (CVE-2025-58651) , Apr 25, 2026