Browse all 9 CVE security advisories affecting cleantalk. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CleanTalk provides anti-spam and bot protection services for websites and applications, primarily targeting comment forms, contact pages, and registration systems. Historically, the application has been susceptible to multiple cross-site scripting (XSS) vulnerabilities, remote code execution (RCE) flaws, and privilege escalation issues, with nine CVEs documented to date. Notable security characteristics include its cloud-based approach and integration with popular CMS platforms. While no major public security incidents have been widely reported, the consistent discovery of vulnerabilities in its codebase suggests ongoing challenges in secure development practices, particularly in input validation and access control mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-28222 | CleanTalk AntiSpam <= 5.173 Reflected XSS — CleanTalk AntiSpamCWE-79 | 6.1 | Medium | 2022-04-19 |
| CVE-2022-28221 | CleanTalk AntiSpam <= 5.173 Reflected XSS — CleanTalk AntiSpamCWE-79 | 6.1 | Medium | 2022-04-19 |
This page lists every published CVE security advisory associated with cleantalk. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.