Lucene search
+L

6 matches found

nvd
nvd
added 2025/06/28 5:15 a.m.14 views

CVE-2025-6252

The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS0.0021EPSS
Exploits0References3
circl
circl
added 2025/06/28 4:50 a.m.14 views

CVE-2025-6252

creationtimestamp| type| source ---|---|--- 2025-06-28 04:50:48+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19803 2025-06-28 06:00:35+00:00| seen| https://bsky.app/profile/potato.software/post/3lsni3porlw2x...

6.4CVSS4.8AI score0.0021EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/06/28 4:21 a.m.6 views

CVE-2025-6252 Qi Addons For Elementor <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS5.5AI score0.0021EPSS
Exploits0References3
cvelist
cvelist
added 2025/06/28 4:21 a.m.14 views

CVE-2025-6252 Qi Addons For Elementor <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS0.0021EPSS
Exploits0References3
cve
cve
added 2025/06/28 4:21 a.m.34 views

CVE-2025-6252

CVE-2025-6252 concerns the WordPress plugin Qi Addons For Elementor (versions up to and including 1.9.1). The vulnerability is a Stored Cross-Site Scripting flaw caused by insufficient input sanitization and output escaping across multiple parameters, allowing an attacker with at least Contributo...

6.4CVSS5.6AI score0.0021EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2025/06/27 11:8 p.m.11 views

WordPress Qi Addons For Elementor plugin <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Qi Addons For Elementor versions = 1.9.1...

6.4CVSS5.5AI score0.0021EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder