CVE-2025-58793
- EPSS 0.04%
- Published 05.09.2025 13:45:03
- Last modified 05.09.2025 17:47:10
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPBean WPB Elementor Addons allows Stored XSS. This issue affects WPB Elementor Addons: from n/a through 1.6.
CVE-2024-34791
- EPSS 0.11%
- Published 03.06.2024 11:15:09
- Last modified 26.02.2025 20:23:31
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wpbean WPB Elementor Addons allows Stored XSS.This issue affects WPB Elementor Addons: from n/a through 1.0.9.
CVE-2024-3063
- EPSS 0.23%
- Published 30.05.2024 04:15:10
- Last modified 26.02.2025 20:58:40
The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the output of 'tags' added to widgets in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user suppli...
CVE-2024-4896
- EPSS 0.27%
- Published 22.05.2024 09:15:12
- Last modified 26.02.2025 21:40:19
The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping. This makes it possible for auth...