Lucene search
K

4 matches found

NVD
NVD
added 2025/08/01 7:15 a.m.7 views

CVE-2025-7646

The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom script parameter in all versions up to, and including, 6.3.10 even when the user does not have the unfilteredhtml...

6.4CVSS0.00231EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/01 6:44 a.m.13 views

CVE-2025-7646 The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce <= 6.3.10 - Authenticated (Contributor+) Stored Cross-Site Scripting

The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom script parameter in all versions up to, and including, 6.3.10 even when the user does not have the unfilteredhtml...

6.4CVSS0.00231EPSS
Exploits0References2
CVE
CVE
added 2025/08/01 6:44 a.m.31 views

CVE-2025-7646

The CVE-2025-7646 entry concerns The Plus Addons for Elementor Page Builder (Lite) for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) in the plugin’s custom script parameter affecting all versions up to 6.3.10. An authenticated attacker with Contributor-level access or higher...

6.4CVSS5.5AI score0.00231EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/07/31 10:0 p.m.8 views

WordPress The Plus Addons for Elementor Page Builder Lite plugin <= 6.3.10 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zer0gh0st in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions = 6.3.10...

6.4CVSS5.2AI score0.00231EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder