cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forstepbyteservice-openstreetmap stepbyteservice-openstreetmap

Direction: ascending
Jun 07, 2024

OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) # CVE-2024-30450

CVE, Research URL

CVE-2024-30450

Home page URL

Security reports for OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer)

Application

OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer)

Date
Mar 29, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Step-Byte-Service GmbH OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) allows Stored XSS.This issue affects OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer): from n/a through 1.1.1.
Affected versions
Min -, max -.
Status
vulnerable
Aug 09, 2025

OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) # CVE-2025-6572

CVE, Research URL

CVE-2025-6572

Home page URL

Security reports for OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer)

Application

OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer)

Date
Aug 08, 2025
Research Description
The OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) WordPress plugin through 1.2.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
Affected versions
Min -, max -.
Status
vulnerable