Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Smart Widgets Better Post & Filter Widgets for Elementor allows Stored XSS. This issue affects Better Post & Filter Widgets for Elementor: from n/a through 1.6.0.
Metrics
Affected Vendors & Products
References
History
Thu, 28 Aug 2025 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Elementor
Elementor elementor Wordpress Wordpress wordpress |
|
Vendors & Products |
Elementor
Elementor elementor Wordpress Wordpress wordpress |
Thu, 28 Aug 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 28 Aug 2025 13:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Smart Widgets Better Post & Filter Widgets for Elementor allows Stored XSS. This issue affects Better Post & Filter Widgets for Elementor: from n/a through 1.6.0. | |
Title | WordPress Better Post & Filter Widgets for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-08-28T16:00:21.360Z
Reserved: 2025-05-19T14:41:42.787Z
Link: CVE-2025-48354

Updated: 2025-08-28T15:59:54.134Z

Status : Awaiting Analysis
Published: 2025-08-28T13:15:55.377
Modified: 2025-08-29T16:24:09.860
Link: CVE-2025-48354

No data.

Updated: 2025-08-28T21:29:54Z