CVE-2025-48276

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visual Composer Visual Composer Website Builder allows Stored XSS. This issue affects Visual Composer Website Builder: from n/a through 45.11.0.
Configurations

No configuration.

History

21 May 2025, 20:25

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de neutralización incorrecta de la entrada durante la generación de páginas web ('Cross-site Scripting') en Visual Composer Visual Composer Website Builder permite XSS almacenado. Este problema afecta a Visual Composer Website Builder desde n/d hasta la versión 45.11.0.

19 May 2025, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-19 15:15

Updated : 2025-05-21 20:25


NVD link : CVE-2025-48276

Mitre link : CVE-2025-48276

CVE.ORG link : CVE-2025-48276


JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')