CVE-2025-50026 WordPress Spoki plugin <= 2.17.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in spoki Spoki spoki allows Stored XSS.This issue affects Spoki: from n/a through = 2.17.0...

CVE-2025-50026

CVE-2025-50026 concerns the Spoki WordPress plugin (versions up to 2.16.0). It is a stored XSS vulnerability caused by improper input neutralization during web page generation. Public sources (Patchstack, CVE lists, and PT Security) identify the affected software and confirm remediation guidance ...

WordPress Spoki plugin <= 2.17.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Spoki versions = 2.17.0...

WordPress Spoki – Chat Buttons and WooCommerce Notifications plugin <= 2.15.15 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by theviper17y in WordPress Plugin Spoki versions = 2.15.15...