cleantalk
Vulnerabilities and Security Researches

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages, CVE-2024-35653

CVE, Research URL

CVE-2024-35653

Home page URL

Security reports for Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Application

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Published on
Jun 04, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in visualcomposer.Com Visual Composer Website Builder allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through 45.8.0.
Affected versions
Min -, max 45.9.0.
Status
vulnerable
Previous vulnerability researches
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2024-35653) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2022-2516) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (ef02cb7ba113551547a2db17546c38a3c63b0758) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2022-2430) , Jun 07, 2024
Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages (CVE-2020-36722) , Jun 07, 2024
New vulnerability
Simple Download Counter (CVE-2025-46240) , Apr 24, 2025
Textmetrics (CVE-2025-46229) , Apr 24, 2025
World first Lifetime free Form Builder for WordPress (CVE-2025-46250) , Apr 24, 2025
Watu Quiz (CVE-2025-46242) , Apr 24, 2025
Link Library (CVE-2025-46237) , Apr 24, 2025