CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

May 7, 2025

CVE ID : CVE-2025-47659

Published : May 7, 2025, 3:16 p.m. | 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in voidcoders WPBakery Visual Composer WHMCS Elements allows Stored XSS. This issue affects WPBakery Visual Composer WHMCS Elements: from n/a through 1.0.4.1.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47661 – Codemstory WordPress SimplePay CSRF Vulnerability

Next Article CVE-2025-47656 – Spiraclethemes Site Library Cross-site Scripting (XSS)

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

CVE-2025-43971 – GoBGP Zero-Value Software Version Len Panic

CVE-2025-7455 – Campcodes Online Movie Theater Seat Reservation System SQL Injection Vulnerability

Microsoft says Edge 134 is the fastest version of the browser ever

Alibaba Qwen Team Just Released Qwen3: The Latest Generation of Large Language Models in Qwen Series, Offering a Comprehensive Suite of Dense and Mixture-of-Experts (MoE) Models

CVE-2025-48705 – Coros PACE 3 BLE NULL Pointer Dereference Vulnerability

chezmoi manages your dotfiles across multiple machines

DistroWatch Weekly, Issue 1123

Creating WordPress Widgets: The Complete Guide

CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

Related Posts