Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| WPZOOM | WPZOOM Addons for Elementor | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Wordpress | Wordpress | 80% |
|
||||||||
| Wpzoom | Wpzoom Addons For Elementor | 100% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Update the WordPress WPZOOM Addons for Elementor Plugin to the latest available version (at least 1.3.5).
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 17 Jun 2026 13:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wordpress
Wordpress wordpress Wpzoom Wpzoom wpzoom Addons For Elementor |
|
| Vendors & Products |
Wordpress
Wordpress wordpress Wpzoom Wpzoom wpzoom Addons For Elementor |
Wed, 17 Jun 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in WPZOOM Addons for Elementor <= 1.3.4 versions. | |
| Title | WordPress WPZOOM Addons for Elementor plugin <= 1.3.4 - Reflected Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T14:27:08.336Z
Reserved: 2026-04-07T10:48:50.116Z
Link: CVE-2026-39597
Vulnrichment
No data.
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-17T13:00:08Z
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')