CINXE.COM

<!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title>CleanTalk Researches – Telegram</title> <meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no" /> <meta name="format-detection" content="telephone=no" /> <meta http-equiv="X-UA-Compatible" content="IE=edge" /> <meta name="MobileOptimized" content="176" /> <meta name="HandheldFriendly" content="True" /> <meta property="og:title" content="CleanTalk Researches"> <meta property="og:image" content="https://cdn4.cdn-telegram.org/file/X42bV_oxyfJG1QVpKMDBEzYOuZD5uizJI5StmxyuLf-7-4WZCA4mpUcLOhRQEZtUtevmoz5LAFqDnnTA_QitSD70XsrlaNLevpUVV9Tgg8-RDifsT_bD7OiGVW-qgaEL5k-KsJz7zP3Km4oiYjGKbfo0mgN8hpOj71xel5bUXICa2XCmzopfbpm1qzfY1tRrsyK-KP7GPKBDv0bA1Nk7z6ohQjy8hQpThwuCbezpxEYfhUfJpoT1uIAgPOxE4pxl1Qv4cQlr2fX_EdhFv_6TgJOsQgcCYmbMllICvoXrBPeZhnCsFlvBLpKqQazA4LOQ862gIm5ht92Ln05u-dUEDw.jpg"> <meta property="og:site_name" content="Telegram"> <meta property="og:description" content="This group is designed to alert users about the latest vulnerabilities that have been found by our researchers https://research.cleantalk.org/"> <meta property="twitter:title" content="CleanTalk Researches"> <meta property="twitter:image" content="https://cdn4.cdn-telegram.org/file/X42bV_oxyfJG1QVpKMDBEzYOuZD5uizJI5StmxyuLf-7-4WZCA4mpUcLOhRQEZtUtevmoz5LAFqDnnTA_QitSD70XsrlaNLevpUVV9Tgg8-RDifsT_bD7OiGVW-qgaEL5k-KsJz7zP3Km4oiYjGKbfo0mgN8hpOj71xel5bUXICa2XCmzopfbpm1qzfY1tRrsyK-KP7GPKBDv0bA1Nk7z6ohQjy8hQpThwuCbezpxEYfhUfJpoT1uIAgPOxE4pxl1Qv4cQlr2fX_EdhFv_6TgJOsQgcCYmbMllICvoXrBPeZhnCsFlvBLpKqQazA4LOQ862gIm5ht92Ln05u-dUEDw.jpg"> <meta property="twitter:site" content="@Telegram"> <meta property="al:ios:app_store_id" content="686449807"> <meta property="al:ios:app_name" content="Telegram Messenger"> <meta property="al:ios:url" content="tg://resolve?domain=cleantalk_researches"> <meta property="al:android:url" content="tg://resolve?domain=cleantalk_researches"> <meta property="al:android:app_name" content="Telegram"> <meta property="al:android:package" content="org.telegram.messenger"> <meta name="twitter:card" content="summary"> <meta name="twitter:site" content="@Telegram"> <meta name="twitter:description" content="This group is designed to alert users about the latest vulnerabilities that have been found by our researchers https://research.cleantalk.org/ "> <link rel="prev" href="/s/cleantalk_researches?before=243"> <link rel="canonical" href="/s/cleantalk_researches?before=265"> <script>window.matchMedia&&window.matchMedia('(prefers-color-scheme: dark)').matches&&document.documentElement&&document.documentElement.classList&&document.documentElement.classList.add('theme_dark');</script> <link rel="icon" type="image/svg+xml" href="//telegram.org/img/website_icon.svg?4"> <link rel="apple-touch-icon" sizes="180x180" href="//telegram.org/img/apple-touch-icon.png"> <link rel="icon" type="image/png" sizes="32x32" href="//telegram.org/img/favicon-32x32.png"> <link rel="icon" type="image/png" sizes="16x16" href="//telegram.org/img/favicon-16x16.png"> <link rel="alternate icon" href="//telegram.org/img/favicon.ico" type="image/x-icon" /> <link href="//telegram.org/css/font-roboto.css?1" rel="stylesheet" type="text/css"> <link href="//telegram.org/css/widget-frame.css?68" rel="stylesheet" media="screen"> <link href="//telegram.org/css/telegram-web.css?37" rel="stylesheet" media="screen"> <script>TBaseUrl='/';</script> </head> <body class="widget_frame_base tgme_webpreview emoji_image thin_box_shadow tme_mode no_transitions"> <div class="tgme_background_wrap"> <canvas id="tgme_background" class="tgme_background" width="50" height="50" data-colors="dbddbb,6ba587,d5d88d,88b884"></canvas> <div class="tgme_background_pattern"></div> </div> <header class="tgme_header search_collapsed"> <div class="tgme_container"> <div class="tgme_header_search"> <form class="tgme_header_search_form" action="/s/cleantalk_researches"> <svg class="tgme_header_search_form_icon" width="20" height="20" viewBox="0 0 20 20"><g fill="none" stroke="#7D7F81" stroke-width="1.4"><circle cx="9" cy="9" r="6"></circle><path d="M13.5,13.5 L17,17" stroke-linecap="round"></path></g></svg> <input class="tgme_header_search_form_input js-header_search" placeholder="Search" name="q" autocomplete="off" value="" /> <a href="/s/cleantalk_researches" class="tgme_header_search_form_clear"><svg class="tgme_action_button_icon" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" width="20" height="20"><g class="icon_body" fill="none" stroke-linecap="round" stroke-linejoin="round" stroke="#000000" stroke-width="1.5"><path d="M6 14l8-8m0 8L6 6" stroke-dasharray="0,11.314" stroke-dashoffset="5.657"/><path d="M26 14l8-8m0 8l-8-8" stroke-dasharray="0.371,10.943" stroke-dashoffset="5.842"/><path d="M46 14l8-8m0 8l-8-8" stroke-dasharray="1.982,9.332" stroke-dashoffset="6.647756"/><path d="M66 14l8-8m0 8l-8-8" stroke-dasharray="5.173,6.14" stroke-dashoffset="8.243"/><path d="M86 14l8-8m0 8l-8-8" stroke-dasharray="7.866,3.448" stroke-dashoffset="9.59"/><path d="M106 14l8-8m0 8l-8-8" stroke-dasharray="9.471,1.843" stroke-dashoffset="10.392"/><path d="M126 14l8-8m0 8l-8-8" stroke-dasharray="10.417,0.896" stroke-dashoffset="10.866"/><path d="M146 14l8-8m0 8l-8-8" stroke-dasharray="10.961,0.353" stroke-dashoffset="11.137"/><path d="M166 14l8-8m0 8l-8-8" stroke-dasharray="11.234,0.08" stroke-dashoffset="11.274"/><path d="M186 14l8-8m0 8l-8-8"/></g></svg></a> </form> </div> <div class="tgme_header_right_column"> <section class="tgme_right_column"> <div class="tgme_channel_info"> <div class="tgme_channel_info_header"> <i class="tgme_page_photo_image bgcolor4" data-content="CR"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i> <div class="tgme_channel_info_header_title_wrap"> <div class="tgme_channel_info_header_title"><span dir="auto">CleanTalk Researches</span></div> <div class="tgme_channel_info_header_labels"></div> </div> <div class="tgme_channel_info_header_username"><a href="https://t.me/cleantalk_researches">@cleantalk_researches</a></div> </div> <div class="tgme_channel_info_counters"><div class="tgme_channel_info_counter"><span class="counter_value">46</span> <span class="counter_type">subscribers</span></div><div class="tgme_channel_info_counter"><span class="counter_value">188</span> <span class="counter_type">photos</span></div><div class="tgme_channel_info_counter"><span class="counter_value">13</span> <span class="counter_type">videos</span></div><div class="tgme_channel_info_counter"><span class="counter_value">226</span> <span class="counter_type">links</span></div></div> <div class="tgme_channel_info_description">This group is designed to alert users about the latest vulnerabilities that have been found by our researchers <a href="https://research.cleantalk.org/" target="_blank" rel="noopener">https://research.cleantalk.org/</a></div> <a class="tgme_channel_download_telegram" href="//telegram.org/dl?tme=5890137d561442092d_3366193156664371304"> <svg class="tgme_channel_download_telegram_icon" width="21px" height="18px" viewBox="0 0 21 18"><g fill="none"><path fill="#ffffff" d="M0.554,7.092 L19.117,0.078 C19.737,-0.156 20.429,0.156 20.663,0.776 C20.745,0.994 20.763,1.23 20.713,1.457 L17.513,16.059 C17.351,16.799 16.62,17.268 15.88,17.105 C15.696,17.065 15.523,16.987 15.37,16.877 L8.997,12.271 C8.614,11.994 8.527,11.458 8.805,11.074 C8.835,11.033 8.869,10.994 8.905,10.958 L15.458,4.661 C15.594,4.53 15.598,4.313 15.467,4.176 C15.354,4.059 15.174,4.037 15.036,4.125 L6.104,9.795 C5.575,10.131 4.922,10.207 4.329,10.002 L0.577,8.704 C0.13,8.55 -0.107,8.061 0.047,7.614 C0.131,7.374 0.316,7.182 0.554,7.092 Z"></path></g></svg>Download Telegram </a> <div class="tgme_footer"> <div class="tgme_footer_column"> <h5><a href="//telegram.org/faq">About</a></h5> </div> <div class="tgme_footer_column"> <h5><a href="//telegram.org/blog">Blog</a></h5> </div> <div class="tgme_footer_column"> <h5><a href="//telegram.org/apps">Apps</a></h5> </div> <div class="tgme_footer_column"> <h5><a href="//core.telegram.org/">Platform</a></h5> </div> </div> </div> </section> </div> <div class="tgme_header_info"> <a class="tgme_channel_join_telegram" href="//telegram.org/dl?tme=5890137d561442092d_3366193156664371304"> <svg class="tgme_channel_join_telegram_icon" width="19px" height="16px" viewBox="0 0 19 16"><g fill="none"><path fill="#ffffff" d="M0.465,6.638 L17.511,0.073 C18.078,-0.145 18.714,0.137 18.932,0.704 C19.009,0.903 19.026,1.121 18.981,1.33 L16.042,15.001 C15.896,15.679 15.228,16.111 14.549,15.965 C14.375,15.928 14.211,15.854 14.068,15.748 L8.223,11.443 C7.874,11.185 7.799,10.694 8.057,10.345 C8.082,10.311 8.109,10.279 8.139,10.249 L14.191,4.322 C14.315,4.201 14.317,4.002 14.195,3.878 C14.091,3.771 13.926,3.753 13.8,3.834 L5.602,9.138 C5.112,9.456 4.502,9.528 3.952,9.333 L0.486,8.112 C0.077,7.967 -0.138,7.519 0.007,7.11 C0.083,6.893 0.25,6.721 0.465,6.638 Z"></path></g></svg>Join </a> <a class="tgme_header_link" href="https://t.me/cleantalk_researches"> <i class="tgme_page_photo_image bgcolor4" data-content="CR"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i> <div class="tgme_header_title_wrap"> <div class="tgme_header_title"><span dir="auto">CleanTalk Researches</span></div> <div class="tgme_header_labels"></div> </div> <div class="tgme_header_counter">46 subscribers</div> </a> </div> </div> </header> <main class="tgme_main" data-url="/cleantalk_researches"> <div class="tgme_container"> <section class="tgme_channel_history js-message_history"> <div class="tgme_widget_message_centered js-messages_more_wrap"><a href="/s/cleantalk_researches?before=243" class="tme_messages_more js-messages_more" data-before="243"></a></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/243" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQzLCJ0IjoxNzQzNzI5MzcwLCJoIjoiZjM2OTg3MzZmYzMwY2I3ZWE3In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5325769038158228579 1240002233_456256611" href="https://t.me/cleantalk_researches/243" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/eMIghgo34yDCHSjsrYg7b3X8QttXz4z5VU3CaovLX_3z5DCzBbPu5T-daEHJTy0eo8MzXarHP9aG9zBBMyl4uuf-TZX4XwMSLM3-HQRC8-RNiA2lMbqnP-fKVxDAyhqUI5xl2uVFxk1Zog1nU9fmB0CgJ-3YSIfoZz6Q6zflA9VRevhSVUXmuzINM0uG7ssS8ENoTBhx_XRKQrJeZsL4u34MjBe8cK0SlE_9xeJc2SPanW92sMzXZgKk4XLBaYk72VPuQyFRearGhdGLR2iA7cxMrPrehncqyZHyRJd7S43aSO5wrKZQKKuTq58xLEaMA5YQmKF52MWR1BdH1LXh9Q.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i>A critical <b>Stored XSS vulnerability</b> has been found in the <b>LearnPress plugin (CVE-2024-13127)</b>, allowing attackers to create JS backdoors through the <b>"Decimal separator"</b> field! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13127/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13127/</a><br/><a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23StoredXSS">#StoredXSS</a> <a href="?q=%23CVE">#CVE</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">55</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/243"><time datetime="2025-02-25T05:29:58+00:00" class="time">05:29</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/244" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQ0LCJ0IjoxNzQzNzI5MzcwLCJoIjoiYjg3YWVkNWIxZmQ3ZmU1MDA5In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5334915643461463228 1242131843_456256700" href="https://t.me/cleantalk_researches/244" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/V2a6y1UBibOM48_CQFJQcryZM0UpuJ_uhuhQL88rdcRQxoKVslqv-an7PIH-ydd9XQWl1tGdTDn2lFCYadN1J7qLBxbUJLc0zxeI1kebfU3kbFb4Kb4n7mQXVH2igq27AhvqP8uT7WKSvD5j4NktTOLer-agucDNVw3DemaVNwPXEGkCXste4i93gjTIBKfO3_LJZTk6aNGu2gsuGeNc7OvqHIsrinO7Jf0DCtyIkUUIYsghj53_Wn6gRpEOIY8Bcz84saO8T-n8bFUijqC-KiIlDfuA6Zbo-CMQ3EgOEy-utFO238RjF2LGk4b7x4A1-PJ2W6Ho2kISwtIOt_7_9Q.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto">A critical <b>Stored XSS vulnerability</b> has been found in the <b>Ajax Search Lite plugin (CVE-2024-13585)</b>, allowing attackers to create JS backdoors through the <b>"Categories filter box header text" field</b>! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13585/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13585/</a><br/><a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23StoredXSS">#StoredXSS</a> <a href="?q=%23CVE">#CVE</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">43</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/244"><time datetime="2025-02-28T05:30:57+00:00" class="time">05:30</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/245" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQ1LCJ0IjoxNzQzNzI5MzcwLCJoIjoiZDQwYzI1MTg3ODVhODM0NGJjIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5343709417201330558 1244179303_456255870" href="https://t.me/cleantalk_researches/245" style="width:257px;background-image:url('https://cdn4.cdn-telegram.org/file/lYS1X7sg8kYgg041w_NCIiaDQTi8xL_ZOnsw3cxd9t0DkVe03Q81_gzqAuF-wsx36pVHbSlUqG_37KzDinjdzA3tZIXfblrlWVEsYut1U7jhsv6VoZpqSpT6DWNQDZZyDN8A246twCrDdJ0oawh_gYtCT3e_zedcUf_yNkzs6ZoOZJhGdmZq2KtWzuBcKS5Aa9LbSoMsPh2afP06D1X7CnRX2utQVr-Bf360QNFwwjr61NCWy0QPTZVCskXa5OkxtJep94SaFV_z03SjcMSdRzQphKQkCK96se3yBIMhzc-Eu3pVDUSjJ9SKBcx91_xI5J95ePmnt_6gvdyeheZLig.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS</b> vulnerability has been found in the <b>Form Maker plugin (CVE-2024-13605)</b>, allowing attackers to create JS backdoors through the<b> "Width" field </b>in theme settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13605/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13605/</a><br/><a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23StoredXSS">#StoredXSS</a> <a href="?q=%23CVE">#CVE</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">32</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/245"><time datetime="2025-03-03T04:59:49+00:00" class="time">04:59</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/247" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQ3LCJ0IjoxNzQzNzI5MzcwLCJoIjoiMzM3MWJjNTNjMjc1NDUyNzkwIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5346052128587770874 1244724758_456256506" href="https://t.me/cleantalk_researches/247" style="width:768px;background-image:url('https://cdn4.cdn-telegram.org/file/kciRoJL5Id6OGU7x9bJJEUk-E2a8XySEsgJIEXfCIUVenoxl6mLhjOf_TJsOaSAMO8aCjPj4-4wYwSwxNT8fQNhcSIrnPNoN4h11iPUfoJhLHG3w2arcxI2WMVhdKPXC-8OyKuB1Ks9VKCk8rhqUV2UMFpCHdFkMhpVlkenH8BnHF04lNyCw1W2jpDK8iGOTjmPcCsRAJ9Ao1VIGimYY36r3qvCOmgb6wmmw3vlDfp5q9uttmQPjzNeFef6XYsw8gpK_rt1zJZJ_4i6xuIS1iZUEVThNyjWJ4D4IU-qh_leyeNMDTj65l2jIe52Cpo_DgsUV9Gf4z93Kc4ClNhj9Zg.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:104.16666666667%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><b><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i>CVE-2024-9227</b> detected in<b> PowerPress Podcasting!</b><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> Stored XSS vulnerability allows an attacker with<b> Author+</b> rights to inject malicious scripts via the transcription field, leading to account hijacking. Update now to stay secure!<br/><br/><a href="https://research.cleantalk.org/cve-2024-9227/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-9227/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">35</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/247"><time datetime="2025-03-03T13:14:28+00:00" class="time">13:14</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/248" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQ4LCJ0IjoxNzQzNzI5MzcwLCJoIjoiMWRhY2EwMjIzOGQwMjI4MWRkIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5348134466171824128 1245209590_456255488" href="https://t.me/cleantalk_researches/248" style="width:240px;background-image:url('https://cdn4.cdn-telegram.org/file/nFXBWrNGUMLqc-MikzHVz4j497FdGGWwVCa2cV7E0sI8btLIGhTqrq0vrTNRanxIvuVxTtUePPt6XT6l9uhYgMjZng8ccm4DrUDNvUEnQ4L5jtnvKM4sfx5HZ3927ZsgSHD1EwUkox2xS3Q6hxr9xD-IscnNaDuTQ1w1gHO9Lfq9eucLQMZYehOfarysRKRAneXTWsOCbkpm6zP8N_cHMtWctcdVJ8el1n3GiS_svDgkBtg2Kna1vjlw1tNyyuAOvLLRX6EfyGk4C7zbP8eaeP9AmvUnZPIdhiqzJOZQaPGXChobSjXVQLLC6iBdDDypOBF8c9E_QiY3GLy4y1x6xA.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto">A critical <b>Stored XSS vulnerability</b> has been found in the <b>Logo Slider plugin (CVE-2024-12308</b>), allowing attackers to create JS backdoors through the <b>"Carousel transition speed" field</b>! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-12308/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-12308/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">34</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta">edited  <a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/248"><time datetime="2025-03-04T06:21:05+00:00" class="time">06:21</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/249" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjQ5LCJ0IjoxNzQzNzI5MzcwLCJoIjoiNmZmOGEzZTRkNzkxYTk5NGQ3In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5350386265985510504 1245733878_456256616" href="https://t.me/cleantalk_researches/249" style="width:257px;background-image:url('https://cdn4.cdn-telegram.org/file/cpYaNDmyhtWd0nM-F_IH4PjjKXD8UcWU1ZnNSSzdOWxrQusbwo6xef0qXG8fsWrTbW9pBDikGLut1r88ed5Bej5Y5g6de7J8tqta1oXZExVmfnv-D-d7aXgmO9WuQHxxo3IvKbQ7M-Oo0MBcgV_asEct0toppzNh5hz9054LR07Q6eaLdxGfyEEvE15QfFRJc9qjqNCl4feu76FZuX83zng2dbrRlsNHIFIJVLxbx52mjvypB5RgYOfQg2EYpeB-gBIdgiNtOrpT_aMj4t1ZlpO6HezSlsUQOVyz2iUEemtAd5DWM_YjcOc_6HfYF8P9h-Q3KchpOcVb4nU0ofo7ew.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS</b> vulnerability has been found in the <b>Form Maker plugin (CVE-2024-13053)</b>, allowing attackers to create JS backdoors through the <b>"Title" field</b> in theme settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13053/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13053/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">35</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/249"><time datetime="2025-03-05T06:17:56+00:00" class="time">06:17</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/250" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjUwLCJ0IjoxNzQzNzI5MzcwLCJoIjoiYjdiYTUxZjU2OTU3ZDU4NzAzIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5352588038020131591 1246246518_456256263" href="https://t.me/cleantalk_researches/250" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/uquEOmNy7i2RPUTkn-KwNwweEOQOzw0At2_WnOnR6ANudwTqdx-0YJ_ZIjzsFM9v5WWDReUCVFk2LGY4G_VFmZQySu5w95JydVoQaBwGWTbLJyNAPv4pHf0SBuGqvYMHSDMnidJAKpLKbJuBItRx2SIXvGRJ6nvo-n8LKl2-EiZjGf4ReZciMbbe-AjQP9QuufFjibfckAVF4ktU4jcmCxw6rpbxhAtPR4PVeIKCC7CgoIukaAhtCVjQvzI1W1JvhzvkTM-tfu8w3dcDP8eNrJcN_a0JjFS4UkmOU1kwsdNrK71UEG089bZiqqLcCMiju2f7-Fr7eHk0p1JWLM0q7g.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical unauthenticated password bypass vulnerability has been found in the <b>Download Manager plugin (CVE-2024-13126)</b>, allowing attackers to download password-protected files via directory listing! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13126/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13126/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23DirectoryListing">#DirectoryListing</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">35</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/250"><time datetime="2025-03-06T10:25:42+00:00" class="time">10:25</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/251" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjUxLCJ0IjoxNzQzNzI5MzcwLCJoIjoiNzRjNzFlMmNhZmRhZjE5MGVkIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5357197843598799479 1247319822_456258167" href="https://t.me/cleantalk_researches/251" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/vj_DDXpu5haNKaY2ogV8eq0SsdVACqOri1I1QIbtFaWUYhGicmCJIKjO-NEov5gBbZugTyrAI5Y2nPpMJh1uVV1qUFtTU-Ldxq1Yyl9KDdte00uSmRJ8k7aEAv4t2oeHuh735glMm3_fsJLzVSuDoEURe-NTBzh9EnzI39GyhwEmAD93u3py1MFP3YKaTrHF2syss4sWKrs3TZq2UAy1VTiVixwKbxqK8OCmnEx-9LoPfaD-yoYxzFcEsvX69fhPMXHUTkDCVxAbPFbgz6eBQKNJfvvD-L9paf11Ew4ZopfMPnx4touCexqlnayYeHHMXQ_1hoQS9cxUvCyOKG-GzA.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability </b>has been found in the <b>Social Slider Feed plugin (CVE-2024-10149)</b>, allowing attackers to create JS backdoors through the<b> "Title" field</b> in widget settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-10149/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-10149/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">44</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/251"><time datetime="2025-03-07T06:43:50+00:00" class="time">06:43</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/252" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjUyLCJ0IjoxNzQzNzI5MzcwLCJoIjoiMjQ3NzA3ODdjODUzMDU1OWE1In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5368452311476728379 1249940207_456258107" href="https://t.me/cleantalk_researches/252" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/LAZ6llufdhJj0eKBNOZzuQJf1MmhD7cbEf-V8vo11pJk0Y0tH8V-GWHWJrH5gAPZBbCpmq0cJs_xNYR_llsFTEgXSklG0ms3m-HxrZLKNE_t7d1DoVi_SJFtrenZyamcHlQ6THQf-FtOtPeJTCgcNuPbCnQZYiahfLxDz6XkEV88MsNIXgMYv_6qaeH0PwIByRVAFrBTanxW7F2i9JGZQLkOqV5PKwFFY0g2LJssUAGMCtonx8-ftUVMxGunyMV93W5ijUF1K-JL_tI5wR8rNR6VWHHs1sOZc9NjRVh7qJUUJM5lNXsYTlNgpF1JAq4PtYUBOxWVRyVAnulUS3oJ2g.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability</b> has been found in the <b>GDPR Cookie Compliance plugin (CVE-2025-1622)</b>, allowing attackers to create JS backdoors through the "Cookie Banner Content" field! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1622/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1622/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">30</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/252"><time datetime="2025-03-11T08:57:44+00:00" class="time">08:57</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/253" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjUzLCJ0IjoxNzQzNzI5MzcwLCJoIjoiODIxNDU2NWViZWJmM2ZjYjU3In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5368452311476728379 1249940207_456258107" href="https://t.me/cleantalk_researches/253" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/W8qD-DP0LMwa8gSZcDwpCgTpYLvlIpzXPAjuSMaA_qGrqrxGMq2lLaSTo0EP7dAiOaRmk0idQG_zmTsSNLZYiCtYOf2FPs3DmzlFSrG-DPBQBYR_xMFUsPTfX3DV5iKMK3V2Q0Y2oBdZd6c8GXR4FsMyUFVgsedlM8i6Wd2-12IukkSoNiECc899GTchF2bkQVK6YCX39lqVjW2dsIvAmqT7EvqzMb4BsP9xYxIPWDxRR1GqCK6fUvQ4igGHm32xEI8s57FmidT69uI87E8-NfYES-glgaUkkIEOyuRBRFD-dXRQ1Bhiv3iM6Uf5vdrQbDTS28Ap3-kkDDnkD_2i9g.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability has been found in the GDPR Cookie Compliance plugin (CVE-2025-1621)</b>, allowing attackers to create JS backdoors through the <b>"Accept - Button Label"</b> field in banner settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1621/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1621/</a><br/> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">36</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/253"><time datetime="2025-03-12T08:01:51+00:00" class="time">08:01</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/254" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU0LCJ0IjoxNzQzNzI5MzcwLCJoIjoiNDg2OTM1M2E3MDdjODcyYzU5In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5368452311476728379 1249940207_456258107" href="https://t.me/cleantalk_researches/254" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/Y0Ff5p-o_0XQYWnS06aqO9pBdhyVxBx6BXHMwgpp_72FQNh0QYkg9vJ05azMklE2OEbu2orv5plTsLpnGmPrTLgjsojW0P-1KKGytIK_oGsjV_QfcocZ5NNl8EmfdfvY1m6reKyZ3vWm1cNyp9TAW0unQ2op0a5RaewReWCC8fwqWpigofhpPe5fvGLG0oSL9USTB8ehHsKxjU7Qb4gYcVbs6vS5tmEMvrI_wXpSSTkvVL6WNnbEh-IviFZC7C500xDjCw4ZJgK9PElNKIyV2pi69g6_BiRtj_rLJ8VoKnPuvNJ5A8vR2F5uINIKzjgsXitxX73u2XXtSjlUl2Ab5Q.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS</b> vulnerability has been found in the <b>GDPR Cookie Compliance plugin (CVE-2025-1620)</b>, allowing attackers to create JS backdoors through the <b>"Button - Hover Label"</b> field in the floating button settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1620/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1620/</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">36</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/254"><time datetime="2025-03-13T05:46:24+00:00" class="time">05:46</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/255" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU1LCJ0IjoxNzQzNzI5MzcwLCJoIjoiMjVkNzY1NGM1NDZjMzM1ZjgzIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5377609147392062049 1252072199_456258145" href="https://t.me/cleantalk_researches/255" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/gPy8gCladEvpI6iNW7tP3HUE7rfRzGgf6DfMv23lNIAiI_zLRx6-dQlRQJAOA8f2By1j6lpgH6v-GQj219NkaDWIl1AWxVUfNRU589VRo5CT5n0KlHEA5DHSkGDQpNI9QAGpNh-O3GotCe-pt8Pk_J7mI0UijvNwMTT1_X3zldHFslCaosytQ59kdWNG9LCf-_kZ_dTQBIXhsoZcIrfdKIryQyqtIhlnxZcubWeLhwVxyehNwTqwHMz5f7kONtVMfwfjDmk43hkgKFHRJmr9M075ZTjCkxGP05C83HipEyBSUD0mMQUfAcXV_nvXhhS3gHUsIhPlHFBG8N4YHjagFw.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability</b> has been found in the <b>GDPR Cookie Compliance plugin (CVE-2025-1619)</b>, allowing attackers to create JS backdoors through the "Checkbox Labels" field in screen settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1619/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1619/</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">39</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/255"><time datetime="2025-03-14T07:02:54+00:00" class="time">07:02</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/256" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU2LCJ0IjoxNzQzNzI5MzcwLCJoIjoiOGQwY2U5ZjBhYWM4NjEwNTU4In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5386515036958222571 1254145763_456255723" href="https://t.me/cleantalk_researches/256" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/JRfqO2kAgqO2jdknqQYonmVOetWRtGaSOeWPV7AVOut8SeQfzVYmLdW9QwcK5a9RBxftTjxde2x9lApNuLSk2fq4621boxi-u5B3GdOWr_IjqwVMV8epB1CxD0e1XlvN7f13B9vVsJIFCxQXEKw2NuzVZ2I9O7ok_P_IAMdPrb_D6r5BUXWK8SLC-tGxsp1twny3-cT4dmbO93bLoKtPPGKB9zoF-WTx9PijPehblHkr7LPKtWcQbI0FeckBBbWiCvS_hz8VjK3hKdkMHeh0vSM_7bpBLN0vKob-QGtMcSdZb-39VXHK5OQ6j4pgrL0Xw1kypgoTEYW61mMiIf8Q9A.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability </b>has been found in the <b>GDPR Cookie Compliance plugin (CVE-2025-1624)</b>, allowing attackers to create JS backdoors through the "Tab Content" field in the third-party cookies settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1624/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1624/</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">30</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/256"><time datetime="2025-03-17T06:37:49+00:00" class="time">06:37</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/257" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU3LCJ0IjoxNzQzNzI5MzcwLCJoIjoiODA2N2VkYWQ4OWQ1OTQ4MjAwIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5386515036958222571 1254145763_456255723" href="https://t.me/cleantalk_researches/257" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/BWJNgSGJxTzDI4KXBKo_73l3E0il1iDjAplW2XA0vcVwlIQ06iZlP9Q93ctBzF4bFAIsVOGxV8Ola6ElERtnQECFMfkAcIwvTXD-PUNKVb0gboUP_YSJ6jJAaC1_nZ-7J1uARxRZkzGKma-cif9jxfZtBZMsbxTjL2OWUsXHWDwQ1A6mzCdn7gwiXblibBWX981AZSrS8r2ypUz2wI88v0Vc-BSk8tDE1BCgLXsBoK2WClRozCRZUdkqMs87UAnL7ZIkaOZUQYBF3bul863Xfn9BTJlUarOwEL66MhZkH5FIIOW_0ukX8i_pYa_cyQ0UGMmP6qItZY_7kQ3_xlbLUw.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical<b> Stored XSS vulnerability </b>has been found in the <b>GDPR Cookie Compliance plugin (CVE-2025-1623)</b>, allowing attackers to create JS backdoors through the "Tracking ID" field in the integrations settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1623/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1623/</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">30</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/257"><time datetime="2025-03-18T05:05:39+00:00" class="time">05:05</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/258" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU4LCJ0IjoxNzQzNzI5MzcwLCJoIjoiOGRmOWRiZjgxYTNhMjg5ZmQ2In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5390940867612765838 1255176232_456257166" href="https://t.me/cleantalk_researches/258" style="width:790px;background-image:url('https://cdn4.cdn-telegram.org/file/OwVUWkP9eHF6gZ-9R4vGhIOq_dsXE3ZTa77JrIHjmRFL-T9reN-clScahDgiuNTeCz7siSF9j7tzxgDEj9RRc2nm3KELKU_MW6mWJMAhnVvP21awYDSfQoiHvkJF-Hxw2SXARU-VjtQjmbJ300wCszRpkJEhS-Wca0dUajd6x-fFwF8DgcfAt1FBdP4BeVaj4mZLDen7DArRubxiTyMWdvOAnwAkUbXfn-_fPUQVIzomxc8kNa1WzktGIXhVvTKsQITilRr7tBKVqDnar4JODE7zYtHk2EcApYvrmjDh1dcMLe061O7GpSO2Gr6JxQksd18u38MZlxk6yrTDgOn6Yw.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:101.26582278481%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i>A critical <b>Stored XSS vulnerability</b> has been found in the <b>Site Reviews plugin (CVE-2025-1232)</b>, allowing <b>unauthenticated</b> attackers to inject JS code in the review form and create admin accounts! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1232/" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1232/</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">38</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/258"><time datetime="2025-03-19T04:38:55+00:00" class="time">04:38</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/259" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjU5LCJ0IjoxNzQzNzI5MzcwLCJoIjoiYzlmYTZiNzhlZTcxNGUzMjM4In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5395444467240133557 1256224808_456254389" href="https://t.me/cleantalk_researches/259" style="width:257px;background-image:url('https://cdn4.cdn-telegram.org/file/fFWhqyfylBMXcdDQZNEGqmkB4VDVNkgDyOZQwH8niIYsfoAA-AvAcikUHk_wCLS9y7B681k2AgC4cfqWv947ZS4bZIsFKrtj_rmIeSdoGISmifJcMpjBsAFl27-XljVuT6UmtqoJMTxxN_4MHDiiQQZVyPuOXOW1VcYbHkBa_lXKQDXZtmDDG6POLe_dTmgI03LS_fX5CwTgftlzVQHf-wNkG-r6L1N2nEZqbpxdiXWURBOCLE7L5nYtNC7RZknvxppIAzqvsx-k8KG4EnrfKLbuGY3knUIiDhRmugH3NCVPDygYVLO6U9TztvYNUxZl24zoslXV0-nPIL40_J2zIg.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i>A critical <b>Stored XSS vulnerability</b> has been found in the <b>Form Maker by 10Web plugin (CVE-2024-10558)</b>, allowing attackers to create JS backdoors through the "Title" field in widget settings! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-10558" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-10558</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">44</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/259"><time datetime="2025-03-20T06:12:17+00:00" class="time">06:12</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/261" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjYxLCJ0IjoxNzQzNzI5MzcwLCJoIjoiNDUwOWQ5MjZkZDYyYzlmY2JkIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5413570633683561004 1260445135_456256044" href="https://t.me/cleantalk_researches/261" style="width:257px;background-image:url('https://cdn4.cdn-telegram.org/file/edcxNLw17nahZKNF2-tqrzC3-cVTkxy79F2miJ0nHEoN8-02pahN4R4rh_zTk0Q5xzbqWpTZaZxebQxxwbFg67nelpI9IFV8uYKCqOkYaHFYgbfL2VMdQNlgmaF6WwxW2t224Jzjz87jouDGxYNtpOgWBR4MVKIwMIjpVJ-l4NiZcKRZmp5LJttZI03jCTPvGS5bheFBlhjD91FokQhUU3UUgRcWgDDjY9Yc7pqgWU4A90IQw6vX6kAkoFUy7rCQppTy6Gvyz1spk-dugeLps-D9sNPQVtupgrBWD6vF81hlePPeHiKLitCfK10aE4I6Crdbigf5nUftEl0hW4sRQw.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS </b>vulnerability has been found in the <b>Photo Gallery by 10Web plugin (CVE-2024-13124)</b>, allowing attackers to create JS backdoors through the <b>"Gallery Title" field!</b> Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13124" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13124</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">34</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/261"><time datetime="2025-03-26T04:51:15+00:00" class="time">04:51</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/262" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjYyLCJ0IjoxNzQzNzI5MzcwLCJoIjoiZDZmZDlkMDEwY2RiM2ZhMjQwIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5429188831283898752 1264081530_456255872" href="https://t.me/cleantalk_researches/262" style="width:256px;background-image:url('https://cdn4.cdn-telegram.org/file/QnvTLzpSAHggZpTA0KHdlmDVdijvgBf5mnxaNA_EmzUlSsH1W4GxOUOKI1PJZV2IQKvbGu3-2yg2vVmG_NbNJEksAXLVBBNkUWP4yq3B2alM1KmsPnDaBtcunt0gSRbu9sJj48wZymMQjIHvJAi6cjw8Eug84ITNpyD11NLeGNJoQz8-m4RuFyMmoQZjChzke7qtvEnL0SkjvC6uG_jEaJzjrMpI2U0T5m68qEiWaLKiPP2hQ4DAAPF213w5GsGievnwgDmZcZx33l6tqVa-ifJOEgDbTFAYy6tJ77rESo5fdZrsLaebASB6SNSH18av-6eUh9_wjImfCNJm0CXQng.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability</b> has been found in the <b>Calculated Fields Form plugin (CVE-2024-13382)</b>, allowing attackers to inject malicious JS into form labels and potentially create backdoor access! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2024-13382" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2024-13382</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">19</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/262"><time datetime="2025-04-01T05:35:55+00:00" class="time">05:35</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/263" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjYzLCJ0IjoxNzQzNzI5MzcwLCJoIjoiZmE3MDlhMWM3MWRjNDIxZDgzIn0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5433710108996659813 1265134222_456256101" href="https://t.me/cleantalk_researches/263" style="width:240px;background-image:url('https://cdn4.cdn-telegram.org/file/lnHev3dqUsKEoOpIXni5QymjeiHCiSFHs5H_OjJIq5x_N_WBH_pKahAYNCuwYWrB_MWWiSItEZl-7LQ6XPBWlQl7oI1MtPEkWJ_VH3Gc4gJuPW7OwK-wwLo37H2rVzXh9C52M-TNXKgO0HSGd_l0N096xpg1RZx1RcjcF_yA3EcPKqmTvo1JIuWuiT6QIuIQ2XK05d3d7YTMmpXepsJ8xKmS1sdJO95hAOMG3IXhBDzIFy9yabzYij8C66TA5fOQmfu-Tzwe_-TC5dZbvZnX80qNelqjo8ZWZqZiC6H4LrJ_tWxQL_ruW_c-CIcu9aPJHpdpJ7-KRJ-Ga2rccdjdqA.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>Stored XSS vulnerability </b>has been found in the <b>Nested Pages plugin (CVE-2025-0718)</b>, allowing attackers to inject JS into post titles and potentially create backdoor admin accounts! Protect your site now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-0718" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-0718</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">19</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta">edited  <a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/263"><time datetime="2025-04-02T06:05:04+00:00" class="time">06:05</time></a></span> </div> </div> </div> </div></div><div class="tgme_widget_message_wrap js-widget_message_wrap"><div class="tgme_widget_message text_not_supported_wrap js-widget_message" data-post="cleantalk_researches/264" data-view="eyJjIjotMjAzNTE0NjQwNCwicCI6MjY0LCJ0IjoxNzQzNzI5MzcwLCJoIjoiYzE2YjBjZjljZmI0MTg1MDc4In0"> <div class="tgme_widget_message_user"><a href="https://t.me/cleantalk_researches"><i class="tgme_widget_message_user_photo bgcolor4" data-content="C"><img src="https://cdn4.cdn-telegram.org/file/YISTY0_P5OoM7v9QW2JGOsJDR3Q55VgS2fgsSGTUwuYLJMk4FEviNSY2Wbj7_hBAalKbHmSYRzZuKIuVI_a9U7nMQ1X3oLfHbQ-63y75eK5UI-mCoa_qErwVUbQe046NE5orhOgf5H9YHxGyQWq4QIguwA4cBJB2SE7-edffiIRBYHxRa8BIKHoxmzC55hgr2lkq1OU7ocXEjOociIo94bIoIccMt-IISuoCPqC7ghDa5IQB4Q4yj09NH8LaeXiQ5ZtUhOnn_ZOEdAoecgFXBz4qwHCS3ETwV2bRUaAH4rhKOXiT2gMo7LyN75fy45_kSW0YrwQappa8w8cjDBT2Ag.jpg"></i></a></div> <div class="tgme_widget_message_bubble"> <i class="tgme_widget_message_bubble_tail"> <svg class="bubble_icon" width="9px" height="20px" viewBox="0 0 9 20"> <g fill="none"> <path class="background" fill="#ffffff" d="M8,1 L9,1 L9,20 L8,20 L8,18 C7.807,15.161 7.124,12.233 5.950,9.218 C5.046,6.893 3.504,4.733 1.325,2.738 L1.325,2.738 C0.917,2.365 0.89,1.732 1.263,1.325 C1.452,1.118 1.72,1 2,1 L8,1 Z"></path> <path class="border_1x" fill="#d7e3ec" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0 L9,0 L9,20 L7,20 L7,20 L7.002,18.068 C6.816,15.333 6.156,12.504 5.018,9.58 C4.172,7.406 2.72,5.371 0.649,3.475 C-0.165,2.729 -0.221,1.464 0.525,0.649 C0.904,0.236 1.439,0 2,0 Z"></path> <path class="border_2x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.5 L9,0.5 L9,20 L7.5,20 L7.5,20 L7.501,18.034 C7.312,15.247 6.64,12.369 5.484,9.399 C4.609,7.15 3.112,5.052 0.987,3.106 C0.376,2.547 0.334,1.598 0.894,0.987 C1.178,0.677 1.579,0.5 2,0.5 Z"></path> <path class="border_3x" d="M9,1 L2,1 C1.72,1 1.452,1.118 1.263,1.325 C0.89,1.732 0.917,2.365 1.325,2.738 C3.504,4.733 5.046,6.893 5.95,9.218 C7.124,12.233 7.807,15.161 8,18 L8,20 L9,20 L9,1 Z M2,0.667 L9,0.667 L9,20 L7.667,20 L7.667,20 L7.668,18.023 C7.477,15.218 6.802,12.324 5.64,9.338 C4.755,7.064 3.243,4.946 1.1,2.983 C0.557,2.486 0.52,1.643 1.017,1.1 C1.269,0.824 1.626,0.667 2,0.667 Z"></path> </g> </svg> </i> <div class="tgme_widget_message_author accent_color"><a class="tgme_widget_message_owner_name" href="https://t.me/cleantalk_researches"><span dir="auto">CleanTalk Researches</span></a></div> <a class="tgme_widget_message_photo_wrap 5435907169452161856 1265645765_456260416" href="https://t.me/cleantalk_researches/264" style="width:799px;background-image:url('https://cdn4.cdn-telegram.org/file/UXZUeaX1NVDyg5kSH1iVKCUS3NfozQPTxAMag61WDWVcClqBe8YTCAfMlJ4womCqQHdiRMrO3F1sQwfn880QTWU_E-zII3tIsmhm4W07QuKSdf97io12NvlGejScS7D7u5ZeO1NvTXaggFE0OGeMeT5QP4iMdYjgrthQs1vWRQrKx0LvUa0rxN2jw2dI_R1u216G7QNpADYiL3B5iOjPPclBjjpUn8CQfwv1OOcCHuUaCLL-aBFylVc9FSyGDn4-Ar7qlvdxQSRcyiJbNJbQPj_AI7xy14zihhzQ3BYXuEx4l0493-kjzcJY6VCZRqq53PArksHqVWElht3KdZHgdA.jpg')"> <div class="tgme_widget_message_photo" style="padding-top:100.12515644556%"></div> </a> <div class="tgme_widget_message_text js-message_text" dir="auto"><i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i> A critical <b>SQL Injection vulnerability</b> has been discovered in the <b>Pods plugin (CVE-2025-1446)</b>, allowing attackers to manipulate the WordPress database and potentially leak sensitive data! Update your plugin now! <i class="emoji" style="background-image:url('//telegram.org/img/emoji/40/F09F94B0.png')"><b>🔰</b></i><br/><br/><a href="https://research.cleantalk.org/cve-2025-1446" target="_blank" rel="noopener">https://research.cleantalk.org/cve-2025-1446</a> <a href="?q=%23WordPress">#WordPress</a> <a href="?q=%23XSS">#XSS</a> <a href="?q=%23CyberSecurity">#CyberSecurity</a></div> <div class="tgme_widget_message_footer compact js-message_footer"> <div class="tgme_widget_message_info short js-message_info"> <span class="tgme_widget_message_views">18</span><span class="copyonly"> views</span><span class="tgme_widget_message_meta"><a class="tgme_widget_message_date" href="https://t.me/cleantalk_researches/264"><time datetime="2025-04-03T05:13:21+00:00" class="time">05:13</time></a></span> </div> </div> </div> </div></div> </section> </div> </main> <script src="//telegram.org/js/jquery.min.js"></script> <script src="//telegram.org/js/jquery-ui.min.js"></script> <script src="//telegram.org/js/tgwallpaper.min.js?3"></script> <script src="//telegram.org/js/tgsticker.js?31"></script> <script src="//telegram.org/js/widget-frame.js?63"></script> <script src="//telegram.org/js/telegram-web.js?14"></script> <script>TWeb.init(); </script> </body> </html>