cleantalk
Vulnerabilities and Security Researches

NPS computy, CVE-2025-67984

CVE, Research URL

CVE-2025-67984

Home page URL

Security reports for NPS computy

Application

NPS computy

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in calliko NPS computy nps-computy allows DOM-Based XSS.This issue affects NPS computy: from n/a through <= 2.8.2.
Affected versions
max 2.8.2.
Status
vulnerable
Previous vulnerability researches
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2024-54253) , Dec 11, 2024
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2025-69312) , Feb 27, 2026
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2024-12584) , Jan 08, 2025
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2025-63044) , Dec 11, 2025
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2025-2108) , Mar 21, 2025
New vulnerability
MailChimp List Subscribe Form (CVE-2025-12172) , Feb 28, 2026
Visitor Maps Extended Referer Field (CVE-2025-69389) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-24942) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-23549) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-24954) , Feb 28, 2026