Vulnerabilities

CVE-2025-9698

by Fred · 13/10/2025

The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks.

More information : https://wpscan.com/vulnerability/a9539def-d92b-4117-b36a-17015c578d89/

Similar

Tags: Cybersecurity Alert