CM Custom Reports – Flexible reporting to track what matters most

Vulnerabilities 3Slug cm-custom-reportsLatest version 1.2.8WordPress.org →

Minimum safe version

1.2.8

Update to 1.2.8 or later to address 3 fixable vulnerabilities

Latest available1.2.8 ✓

N/A

2026-03-06< 1.2.8

CM Custom Reports <= 1.2.7 - Reflected Cross-Site Scripting via 'date_from' and 'date_to' Parameters

N/A

2026-03-19< 1.2.8

CM Custom Reports <= 1.2.7 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Labels

High 7.1

2025-03-03< 1.2.1

CVE-2025-24758