Repeated emails about CleanTalk vulnerability

  • Resolved fiscalwebmaster

    (@fiscalwebmaster)


    4 months ago

    Afternoon team,

    For the last few weeks I have been receiving emails notifying me of vulnerability CVE-2025-13604 – I eventually came to this site and saw someone had asked a similar question a few days back, and so I followed the instructions left there – Allowed complete deactivation > deactivated and reactivated plugin with access key. This afternoon, I have received the same email again, so unfortunately it doesn’t appear to have been fixed by taking these actions – can someone help? Many thanks in advance!

    Edit to add – this post has been marked as spam for some reason? Not sure if that’s you guys reviewing or automated elsewhere.

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Support sergecleantalk

    (@sergecleantalk)

    4 months ago

    Hello,

    Unfortunately, your link requires authorisation and doesn’t lead to our website. Could you please clarify why you think these emails are related to our service? Also, vulnerability CVE-2025-13604 has been fixed in the latest Security plugin versions.

    Thread Starter fiscalwebmaster

    (@fiscalwebmaster)

    4 months ago

    Apologies, Serge – it slipped my mind that it would be a mimecast link rather than the original CleanTalk/CVE research page. The reason I think this is related to your service is because the email is coming directly from you guys (welcome@cleantalk.org), multiple times over many weeks – please see attached screenshot – thanks,

    Plugin Support eugenecleantalk

    (@eugenecleantalk)

    4 months ago

    Thank you for your reply.

    We will correct the mistake and notify you of the result within 3 business days.

    Plugin Support eugenecleantalk

    (@eugenecleantalk)

    4 months ago

    Hello.

    We noticed that Malware Scanner reports in your CleanTalk dashboard (https://cleantalk.org/my/logs_mscan) are sometimes sent by our plugin version 2.168. Most likely, you have a test site that uses the same access key and has plugin version 2.168 installed. That is why you are receiving vulnerability notifications. Please update the plugin.

    Did it help?

    Thread Starter fiscalwebmaster

    (@fiscalwebmaster)

    4 months ago

    Hi Eugene, thanks for getting back to me – we do have a staging site so I could see this being the issue – let me contact my dev and ask him to perform the steps you have suggested, and I will get back to you to confirm.

    Plugin Support eugenecleantalk

    (@eugenecleantalk)

    4 months ago

    You’re welcome. Write to us anytime.

    Plugin Support sergecleantalk

    (@sergecleantalk)

    3 months, 3 weeks ago

    Hello.
    We haven’t heard back from you in a few days, so I’m going to mark this topic as “resolved”.
    If you have any further questions, you can start a new topic or contact us via our private Ticket System: https://cleantalk.org/my/support/open.

Viewing 7 replies - 1 through 7 (of 7 total)

You must be logged in to reply to this topic.