CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

May 7, 2025

CVE ID : CVE-2025-47659

Published : May 7, 2025, 3:16 p.m. | 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in voidcoders WPBakery Visual Composer WHMCS Elements allows Stored XSS. This issue affects WPBakery Visual Composer WHMCS Elements: from n/a through 1.0.4.1.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47661 – Codemstory WordPress SimplePay CSRF Vulnerability

Next Article CVE-2025-47656 – Spiraclethemes Site Library Cross-site Scripting (XSS)

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This Motorola Razr deal at Best Buy is the top offer I’ve seen on the flip phone

Google Maps can identify and save places in your screenshots – here’s how

T-Mobile is giving loyal users a free line right now – how to see if you qualify

CTA warns of tariff-fueled price hikes on consumer tech – but it’s not all bad news

Big Node, VS Code, and Mantine updates

Big Node, VS Code, and Mantine updates

Prepare for Contact Center Week with Colleen Eager

Preparing for the Unthinkable: Safeguarding People and Productivity During India-Pakistan Conflicts

Microsoft confirms Offline Calendar for New Outlook on Windows 11

Microsoft confirms Offline Calendar for New Outlook on Windows 11

Windows 11 Microsoft Store tests Copilot integration to increase app downloads

Beyond APT: Software Management with Flatpak on Ubuntu

CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4514 – Zhengzhou Jiuhua Electronic Technology mayicms SQL Injection Vulnerability

Blizzard partnered with Gunnar to make some LEGENDARY Overwatch blue-light-blocking glasses for gamers

Google says that Chrome’s autofill feature helps 3 out of 4 websites keep customers on-site

Former University of Michigan Football Coach Indicted on Charges of Unauthorized Access and Identity Theft

Allen Institute for AI: Open-Source Innovations withÂ Ethical Commitments and Contributions in 2024

Salesforce CEO says Microsoft did “pretty nasty” things to Slack and its OpenAI partnership may be a recipe for disaster

Microsoft News Roundup: Nightmare week of price hikes, rebrands, and remembering how Bill Gates lost $400 billion

CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25

Meta Settles for $1.4 Billion with Texas Over Illegal Biometric Data Collection

CVE-2025-47659 – WPBakery Visual Composer WHMCS Elements Cross-site Scripting (XSS)

Related Posts