CVE-2025-6747 | Avada Fusion Builder Plugin up to 3.12.1 on WordPress Shortcode fusion_map cross site scripting

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in Avada Fusion Builder Plugin up to 3.12.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function fusion_map of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-6747. The attack can be launched remotely. There is no exploit available.

CVE-2025-6747 | Avada Fusion Builder Plugin up to 3.12.1 on WordPress Shortcode fusion_map cross site scripting

Post correlati

CVE-2025-4014 | PHPGurukul Art Gallery Management System 1.0 manage-art-medium.php artmed sql injection

CVE-2023-50901 | HasThemes HT Mega Plugin up to 2.3.8 on WordPress cross site scripting

CVE-2024-5589 | Netentsec NS-ASG Application Security Gateway 6.3 config_MT.php Mid sql injection

CVE-2024-41946 | Ruby rexml Gem up to 3.3.2 XML resource consumption