6 matches found
PT-2025-33397 · WordPress · Visual Composer Website Builder
Name of the Vulnerable Software and Affected Versions: Visual Composer Website Builder affected versions not specified Description: Improper neutralization of input during web page generation allows for Stored Cross-site Scripting XSS. Recommendations: At the moment, there is no information about...
CVE-2025-46254
CVE-2025-46254 affects the Visual Composer Website Builder WordPress plugin (versions through 45.10.0). The issue is a Stored Cross-Site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation. Exploitation could occur via stored inputs that are rendere...
CVE-2025-46254 WordPress Visual Composer Website Builder plugin <= 45.10.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Website Builder visualcomposer allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through = 45.10.0...
WordPress Visual Composer Starter Theme <= 3.3 is vulnerable to Cross Site Scripting (XSS)
Software Visual Composer Starter Type Theme Vulnerable versions = 3.3 Fixed in 3.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43263 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ce7f81ff359f Credits stealthcopter Required privilege...
WordPress Visual Composer Website Builder Plugin <= 45.8.0 is vulnerable to Cross Site Scripting (XSS)
Software Visual Composer Website Builder Type Plugin Vulnerable versions = 45.8.0 Fixed in 45.9.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35653 Patch priority Low CVSS severity Low 6.5 Developer Visual Composer PSID 608be0fe1f1f Credits savphill Required...
WordPress Visual Composer Website Builder Plugin <= 45.6.0 is vulnerable to Cross Site Scripting (XSS)
Software Visual Composer Website Builder Type Plugin Vulnerable versions = 45.6.0 Fixed in 45.7.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6880 Patch priority Low CVSS severity Low 6.5 Developer Visual Composer PSID 2a3c93e3a183 Credits...