cleantalk
Vulnerabilities and Security Researches

Sell Photo, 2ce065d802b631a3fa4492d5366f0ffc4e0ee37b

CVE, Research URL

2ce065d802b631a3fa4492d5366f0ffc4e0ee37b

Home page URL

Security reports for Sell Photo

Application

Sell Photo

Published on
Aug 17, 2020
Research Description
Sell Photo [sell-photo] < 1.0.6 WordPress Sell Photo plugin <= 1.0.5 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Melbin K Mathew in WordPress Sell Photo plugin (versions <= 1.0.5).
Affected versions
max 1.0.6.
Status
vulnerable
Previous vulnerability researches
Zarinpal Gateway (CVE-2026-2592) , Apr 15, 2026
New vulnerability
Form Maker by 10Web &#8211; Mobile-Friendly Drag &amp; Drop Contact Form Builder (CVE-2026-3330) , Apr 20, 2026
Sell Photo (2ce065d802b631a3fa4492d5366f0ffc4e0ee37b) , Apr 19, 2026
CMP &#8211; Coming Soon &amp; Maintenance Plugin by NiteoThemes (CVE-2026-6518) , Apr 19, 2026
Pz-LinkCard (CVE-2026-2434) , Apr 19, 2026
NGG Smart Image Search (CVE-2025-58027) , Apr 19, 2026