CVE-2026-1543 | themefusion Avada Builder Plugin up to 3.15.2 on WordPress Dynamic Data Feature cross site scripting

Inserito da Angelo Barbosa | Mag 21, 2026 | CVE

A vulnerability was found in themefusion Avada Builder Plugin up to 3.15.2 on WordPress and classified as problematic. This issue affects some unknown processing of the component Dynamic Data Feature. Executing a manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-1543. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-1543 | themefusion Avada Builder Plugin up to 3.15.2 on WordPress Dynamic Data Feature cross site scripting

Post correlati

CVE-2024-0903 | User Feedback Plugin up to 1.0.13 on WordPress cross site scripting

CVE-2024-35691 | Marketing Fire Widget Options Plugin up to 5.1.0 on WordPress information disclosure

CVE-2026-35099 | Lakeside SysTrack Agent prior 11.2.1.28 race condition

CVE-2025-6546 | Drive Folder Embedder Plugin up to 1.1.0 on WordPress tablecssclass cross site scripting