CVE-2025-8779 | All-in-One Addons for Elementor Plugin up to 2.5.6 on WordPress Countdown Widget cross site scripting

Inserito da Angelo Barbosa | Dic 12, 2025 | CVE

A vulnerability described as problematic has been identified in All-in-One Addons for Elementor Plugin up to 2.5.6 on WordPress. This affects an unknown function of the component Countdown Widget. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-8779. The attack may be performed from remote. There is no available exploit.

CVE-2025-8779 | All-in-One Addons for Elementor Plugin up to 2.5.6 on WordPress Countdown Widget cross site scripting

Post correlati

CVE-2025-53669 | VAddy Plugin up to 1.2.8 on Jenkins Job Configuration Form information disclosure

CVE-2021-47227 | Linux Kernel up to 5.10.45/5.12.12 __fpu__restore_sig initialization (076f732b16a5/ec25ea1f3f05/484cea4f362e)

CVE-2024-38303 | Dell PowerEdge Platform up to 2.22.0 14G Intel BIOS input validation (dsa-2024-309)

CVE-2024-39353 | Mattermost up to 9.5.5/9.8.0 Message Content RemoteClusterFrame information disclosure

CVE-2021-47227 | Linux Kernel up to 5.10.45/5.12.12 fpurestore_sig initialization (076f732b16a5/ec25ea1f3f05/484cea4f362e)