CVE-2025-48276 | Visual Composer Website Builder Plugin up to 45.11.0 on WordPress cross site scripting

Inserito da Angelo Barbosa | Mag 19, 2025 | CVE

A vulnerability was found in Visual Composer Website Builder Plugin up to 45.11.0 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-48276. The attack can be launched remotely. There is no exploit available.

CVE-2025-48276 | Visual Composer Website Builder Plugin up to 45.11.0 on WordPress cross site scripting

Post correlati

CVE-2024-11443 | debranding Plugin up to 1.0.2 on WordPress Options Update access control

CVE-2024-34011 | Acronis Cyber Protect Cloud Agent prior 37758 Folder default permission

CVE-2023-52305 | Paddle up to 2.5.x divide by zero (pdsa-2023-014)

CVE-2024-13802 | kwestion505 Bandsintown Events Plugin up to 1.3.1 on WordPress Shortcode bandsintown_events cross site scripting