CVE-2025-46529 – StressFree Sites Business Contact Widget Stored Cross-Site Scripting Vulnerability

April 24, 2025

CVE ID : CVE-2025-46529

Published : April 24, 2025, 4:15 p.m. | 2 hours, 44 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in StressFree Sites Business Contact Widget allows Stored XSS. This issue affects Business Contact Widget: from n/a through 2.7.0.

Severity: 5.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46531 – Ankur Vishwakarma WP AVCL Automation Helper SSRF Vulnerability

Next Article CVE-2025-46530 – HuangYe WuDeng Hacklog Remote Attachment CSRF Stored XSS

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-46529 – StressFree Sites Business Contact Widget Stored Cross-Site Scripting Vulnerability

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

Redis Vulnerability Exposes Servers to Denial-of-Service Attacks

System76 rinnova il laptop Serval WS con scheda grafica NVIDIA GeForce RTX 5070 Ti

VideoDubber AI Celebrity Voice Generator

Navigating AI Regulations in 2025: A Practical Guide for Forward-Thinking Businesses📘

Ivanti Workspace Control Vulnerabilities Let Attackers Decrypt Stored SQL Credentials

rbw is an unofficial Bitwarden CLI

CVE-2025-37812 – Linux Kernel USB cdns3 NCM Gadget Deadlock

CVE-2025-20163 – Cisco Nexus Dashboard Fabric Controller SSH Host Key Validation Impersonation Vulnerability

CVE-2025-46529 – StressFree Sites Business Contact Widget Stored Cross-Site Scripting Vulnerability

Related Posts