CVE-2025-7502
- EPSS 0.04%
- Published 06.08.2025 01:45:13
- Last modified 06.08.2025 20:23:37
The WPBakery Page Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several shortcodes in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping on user supplied att...
CVE-2025-4968
- EPSS 0.04%
- Published 24.07.2025 03:39:04
- Last modified 25.07.2025 15:29:44
The WPBakery Page Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple Page Builder elements (Copyright Element, Hover Box, Separator With Text, FAQ, Single Image, Custom Header, Button, Call To Action...
CVE-2025-4965
- EPSS 0.04%
- Published 19.06.2025 06:44:49
- Last modified 10.07.2025 00:01:59
The WPBakery Page Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Grid Builder feature in all versions up to, and including, 8.4.1 due to insufficient input sanitization and output escaping on ...
CVE-2024-5708
- EPSS 0.17%
- Published 06.08.2024 06:15:34
- Last modified 11.03.2025 17:28:36
The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 7.7 due to insufficient input sanitization and output escaping. This makes it possible for a...