CVE-2025-14275 | Jeg Elementor Kit Plugin up to 3.0.1 on WordPress Countdown Widget cross site scripting

Inserito da Angelo Barbosa | Gen 7, 2026 | CVE

A vulnerability was found in Jeg Elementor Kit Plugin up to 3.0.1 on WordPress. It has been rated as problematic. Affected is an unknown function of the component Countdown Widget. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-14275. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-14275 | Jeg Elementor Kit Plugin up to 3.0.1 on WordPress Countdown Widget cross site scripting

Post correlati

CVE-2022-20655 | Cisco IOS XR Software CLI os command injection (cisco-sa-cli-cmdinj-4MttWZPB)

CVE-2024-0536 | Tenda W9 1.0.0.7(4456) httpd setWrlAccessList ssidIndex stack-based overflow

CVE-2023-37185 | C-Blosc2 up to 2.9.2 zfp/blosc2-zfp.c zfp_prec_decompress null pointer dereference (Issue 519)

CVE-2024-35570 | inxedu 2.0.6 JSP File ImageUploadController.class unrestricted upload