cleantalk
Vulnerabilities and Security Researches

Ibtana – WordPress Website Builder, CVE-2025-26891

CVE, Research URL

CVE-2025-26891

Home page URL

Security reports for Ibtana – WordPress Website Builder

Application

Ibtana – WordPress Website Builder

Published on
Feb 25, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VW THEMES Ibtana ibtana-visual-editor allows Stored XSS.This issue affects Ibtana: from n/a through <= 1.2.5.9.
Affected versions
max 1.2.5.9.
Status
vulnerable
Previous vulnerability researches
Ibtana &#8211; WordPress Website Builder (CVE-2024-37123) , Jun 24, 2024
Ibtana &#8211; WordPress Website Builder (CVE-2025-59581) , Jun 13, 2026
Ibtana &#8211; WordPress Website Builder (CVE-2025-26891) , Feb 27, 2025
Ibtana &#8211; WordPress Website Builder (CVE-2022-4674) , Jun 06, 2024
Ibtana &#8211; WordPress Website Builder (CVE-2023-6684) , Jun 06, 2024
New vulnerability
New User Approve (CVE-2025-63030) , Jun 14, 2026
New User Approve (CVE-2023-33999) , Jun 14, 2026
Plethora Plugins Tabs + Accordions (CVE-2024-13721) , Jun 14, 2026
DancePress (TRWA) (CVE-2023-33999) , Jun 14, 2026
Post Slider and Post Carousel with Post Vertical Scrolling Widget &#8211; A Responsive Post Slider (CVE-2023-33999) , Jun 14, 2026