CVE-2025-2944 | Jeg Elementor Kit Plugin up to 2.6.12 on WordPress Button Widget/Countdown Widget cross site scripting

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability has been found in Jeg Elementor Kit Plugin up to 2.6.12 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Button Widget/Countdown Widget. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-2944. The attack can be launched remotely. There is no exploit available.

CVE-2025-2944 | Jeg Elementor Kit Plugin up to 2.6.12 on WordPress Button Widget/Countdown Widget cross site scripting

Post correlati

CVE-2025-23837 | One Backend Language Plugin up to 1.0 on WordPress cross site scripting

CVE-2025-22302 | WP Wand Plugin up to 1.2.5 on WordPress authorization

CVE-2024-2795 | SEO Simple Pack Plugin up to 3.2.1 on WordPress information disclosure

CVE-2024-38495 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM information disclosure