cleantalk
Vulnerabilities and Security Researches

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages, CVE-2024-27997

CVE, Research URL

CVE-2024-27997

Home page URL

Security reports for Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Application

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Published on
Mar 19, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visualcomposer Visual Composer Website Builder allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through 45.6.0.
Affected versions
Min -, max 45.7.0.
Status
vulnerable
Previous vulnerability researches
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2024-35653) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2022-2516) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (ef02cb7ba113551547a2db17546c38a3c63b0758) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2022-2430) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2020-36722) , Jun 07, 2024
New vulnerability
Simple Download Counter (CVE-2025-46240) , Apr 24, 2025
Textmetrics (CVE-2025-46229) , Apr 24, 2025
World first Lifetime free Form Builder for WordPress (CVE-2025-46250) , Apr 24, 2025
Watu Quiz (CVE-2025-46242) , Apr 24, 2025
Link Library (CVE-2025-46237) , Apr 24, 2025