Bellows Accordion Menu Security Vulnerabilities and Issues — Bellows Accordion Menu CVE List

Lucene search

SevensparkBellows Accordion Menu

2 matches found

CVE•added 2023/10/30 2:15 p.m.•32 views

CVE-2023-5164

The Bellows Accordion Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contrib...

6.4CVSS5.2AI score0.00092EPSS

CVE•added 2025/06/06 1:15 p.m.•29 views

CVE-2025-49242

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sevenspark Bellows Accordion Menu allows Stored XSS. This issue affects Bellows Accordion Menu: from n/a through 1.4.3.

6.5CVSS6.4AI score0.00039EPSS