Siteorigin Widgets Bundle Security Vulnerabilities and Issues — Siteorigin Widgets Bundle CVE List

Lucene search

SiteoriginSiteorigin Widgets Bundle

1 matches found

CVE•added 2025/06/25 3:15 a.m.•10 views

CVE-2025-5585

The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-url DOM Element Attribute in all versions up to, and including, 1.68.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Co...

6.4CVSS5.9AI score0.00034EPSS