CVE-2025-32162

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Morgan Kay Chamber Dashboard Business Directory allows DOM-Based XSS. This issue affects Chamber Dashboard Business Directory: from n/a through 3.3.11...

CVE-2025-32186

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Turbo Addons Turbo Addons Elementor turbo-addons-elementor allows DOM-Based XSS.This issue affects Turbo Addons Elementor: from n/a through = 1.7.7...

CVE-2025-32191

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webangon News Element Elementor Blog Magazine news-element allows DOM-Based XSS.This issue affects News Element Elementor Blog Magazine: from n/a through = 1.0.9...

CVE-2025-32187

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Quý Lê 91 Administrator Z administrator-z allows DOM-Based XSS.This issue affects Administrator Z: from n/a through = 2026.04.05...

CVE-2025-32174

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tockify Tockify Events Calendar tockify-events-calendar allows DOM-Based XSS.This issue affects Tockify Events Calendar: from n/a through = 2.2.13...

CVE-2025-32190

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in smartwpress Musician's Pack For Elementor music-pack-for-elementor allows DOM-Based XSS.This issue affects Musician's Pack For Elementor: from n/a through = 1.8.7...

CVE-2025-32189

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Best WP Developer BWD Elementor Addons bwd-elementor-addons allows DOM-Based XSS.This issue affects BWD Elementor Addons: from n/a through = 4.4.2...

CVE-2025-32191

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webangon News Element Elementor Blog Magazine news-element allows DOM-Based XSS.This issue affects News Element Elementor Blog Magazine: from n/a through = 1.0.9...

CVE-2025-32186

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Turbo Addons Turbo Addons Elementor turbo-addons-elementor allows DOM-Based XSS.This issue affects Turbo Addons Elementor: from n/a through = 1.7.7...

CVE-2025-32189

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Best WP Developer BWD Elementor Addons bwd-elementor-addons allows DOM-Based XSS.This issue affects BWD Elementor Addons: from n/a through = 4.4.2...

CVE-2025-32187

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Quý Lê 91 Administrator Z administrator-z allows DOM-Based XSS.This issue affects Administrator Z: from n/a through = 2026.03.02...

CVE-2025-32190

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in smartwpress Musician's Pack For Elementor music-pack-for-elementor allows DOM-Based XSS.This issue affects Musician's Pack For Elementor: from n/a through = 1.8.7...

CVE-2025-32174

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tockify Tockify Events Calendar tockify-events-calendar allows DOM-Based XSS.This issue affects Tockify Events Calendar: from n/a through = 2.2.13...

CVE-2025-32169

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Suresh Prasad Showeblogin Social showeblogin-facebook-page-like-box allows DOM-Based XSS.This issue affects Showeblogin Social: from n/a through = 7.0...

CVE-2025-32162

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Morgan Kay Chamber Dashboard Business Directory allows DOM-Based XSS. This issue affects Chamber Dashboard Business Directory: from n/a through 3.3.11...

CVE-2025-32191 WordPress News Element Elementor Blog Magazine plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webangon News Element Elementor Blog Magazine news-element allows DOM-Based XSS.This issue affects News Element Elementor Blog Magazine: from n/a through = 1.0.9...

CVE-2025-32191 WordPress News Element Elementor Blog Magazine plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webangon News Element Elementor Blog Magazine news-element allows DOM-Based XSS.This issue affects News Element Elementor Blog Magazine: from n/a through = 1.0.9...

CVE-2025-32189

CVE-2025-32189: BWD Elementor Addons (Best WP Developer) for WordPress is vulnerable to DOM-based/Stored XSS in versions up to 4.3.20 due to improper input handling. Patch status in Wordfence shows Unpatched; no public fix details in provided docs. Affected: BWD Elementor Addons (≤4.3.20); Risk d...

CVE-2025-32189 WordPress BWD Elementor Addons plugin <= 4.4.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Best WP Developer BWD Elementor Addons bwd-elementor-addons allows DOM-Based XSS.This issue affects BWD Elementor Addons: from n/a through = 4.4.2...

CVE-2025-32190

CVE-2025-32190 refers to a stored XSS in Musician’s Pack for Elementor (WordPress plugin). The connected Wordfence entry shows an authenticated (Contributor+) Stored Cross-Site Scripting issue affecting Musician’s Pack for Elementor up to version 1.8.4.1. The initial document lists Cross-site Scr...