CVE-2025-6687 | Magic Buttons for Elementor Plugin up to 1.0 on WordPress Shortcode magic-button cross site scripting

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability was found in Magic Buttons for Elementor Plugin up to 1.0 on WordPress. It has been rated as problematic. This issue affects the function magic-button of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2025-6687. The attack may be initiated remotely. There is no exploit available.

CVE-2025-6687 | Magic Buttons for Elementor Plugin up to 1.0 on WordPress Shortcode magic-button cross site scripting

Post correlati

CVE-2024-6169 | Unlimited Elements For Elementor Plugin up to 1.5.112 on WordPress username cross site scripting

CVE-2024-21475 | Qualcomm Snapdragon up to SM6250 out-of-range pointer offset

CVE-2023-33220 | IDEMIA SIGMA Lite & Lite + Retrofit Validation stack-based overflow

CVE-2024-42328 | Zabbix up to 7.0.2 curl_write_cb unchecked return value to null pointer dereference