CVE-2025-6687 | Magic Buttons for Elementor Plugin up to 1.0 on WordPress Shortcode magic-button cross site scripting

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability was found in Magic Buttons for Elementor Plugin up to 1.0 on WordPress. It has been rated as problematic. This issue affects the function magic-button of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2025-6687. The attack may be initiated remotely. There is no exploit available.

CVE-2025-6687 | Magic Buttons for Elementor Plugin up to 1.0 on WordPress Shortcode magic-button cross site scripting

Post correlati

CVE-2024-53298 | Dell PowerScale OneFS up to 9.10.0.1 NFS Export authorization (dsa-2025-208)

CVE-2021-47437 | Linux Kernel up to 5.14.13 adis16475 adis_write_reg_16 deadlock (04e03b907022/9da1b86865ab)

CVE-2024-8558 | SourceCodester Food Ordering Management System 1.0 Price place-order.php total improper validation of specified quantity in input

CVE-2023-51633 | Centreon sysName cross site scripting