Lucene search
K

5 matches found

CNNVD
CNNVD
added 2025/10/03 12:0 a.m.3 views

WordPress plugin X Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.8AI score0.00225EPSS
Exploits0References2
NVD
NVD
added 2025/05/16 4:15 p.m.14 views

CVE-2025-48132

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pencilwp X Addons for Elementor x-addons-elementor allows Stored XSS.This issue affects X Addons for Elementor: from n/a through = 1.0.16...

6.5CVSS0.00172EPSS
Exploits0References1
CVE
CVE
added 2025/05/16 3:45 p.m.33 views

CVE-2025-48132

CVE-2025-48132 affects X Addons for Elementor (WordPress plugin). The issue is a Stored XSS due to improper input neutralization during web page generation, affecting versions n/a through 1.0.14. Public sources (PT-2025-21730, Patchstack, CVE listings) identify the fix as upgrading beyond version...

6.5CVSS7.2AI score0.00172EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/16 3:45 p.m.10 views

CVE-2025-48132 WordPress X Addons for Elementor <= 1.0.14 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pencilwp X Addons for Elementor allows Stored XSS. This issue affects X Addons for Elementor: from n/a through 1.0.14...

6.5CVSS6.8AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.5 views

PT-2025-21730 · Elementor · Qi Addons For Elementor

Name of the Vulnerable Software and Affected Versions: X Addons for Elementor versions 1.0.0 through 1.0.14 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker ca...

6.5CVSS6.8AI score0.00172EPSS
Exploits0References6
Rows per page
Query Builder