CVE-2025-46541 – Elrata WP-reCAPTCHA-bp Cross-site Scripting (XSS)

April 24, 2025

CVE ID : CVE-2025-46541

Published : April 24, 2025, 4:15 p.m. | 2 hours, 44 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in elrata_ WP-reCAPTCHA-bp allows Stored XSS. This issue affects WP-reCAPTCHA-bp: from n/a through 4.1.

Severity: 5.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46540 – Chris Mok GNA Search Shortcode Cross-site Scripting

Next Article CVE-2025-46542 – ThemeXpert Xpert Tab Stored Cross-site Scripting

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Development tool updates from WWDC: Foundation Models framework, Xcode 26, Swift 6.2, and more

Decoding The SVG path Element: Line Commands

Your favorite AI chatbot is lying to you all the time

Your CarPlay is getting a major overhaul on iOS 26: 3 new features arriving to your dashboard

Every iPad model that supports iPadOS 26 (and which ones won’t be compatible)

Why I recommend this Lenovo Android tablet to most people – especially at this price

Community News: Latest PECL Releases (06.10.2025)

Community News: Latest PECL Releases (06.10.2025)

SOLID Design Principles Every JavaScript Deveveloper Should Know

Perficient Boldly Advances Business Through Technology Partnerships and Collaborative Innovation

Final Fantasy XVI launches on Xbox, and FF VII Remake Intergrade is coming this winter

Final Fantasy XVI launches on Xbox, and FF VII Remake Intergrade is coming this winter

PowerToys Run adds Internet speed test, video downloader & more

Not Rumor Anymore: Persona 4 Revival Announced At Xbox Games Showcase 2025

CVE-2025-46541 – Elrata WP-reCAPTCHA-bp Cross-site Scripting (XSS)

Critical Wazuh bug exploited in growing Mirai botnet infection

The June 2025 Security Update Review

Back in BlackEnergy *: 2014 Targeted Attacks in Ukraine and Poland

Xbox and Microsoft reveal global price increases for consoles, accessories — and even games

CVE-2025-31238 – Apple Safari Web Content Memory Corruption Vulnerability

The apps using the sprotect.sys driver will crash Windows 11 24H2, but Microsoft is working on a fix

CVE-2025-5295 – FreeFloat FTP Server Buffer Overflow Vulnerability

Microsoft subtly warns Windows 10 users to upgrade to Windows 11 in a new ad

CVE-2025-4150 – Netgear EX6200 Remote Buffer Overflow

CVE-2025-43966 – Libheif NULL Pointer Dereference Vulnerability

CVE-2025-46541 – Elrata WP-reCAPTCHA-bp Cross-site Scripting (XSS)

Related Posts