cleantalk
Vulnerabilities and Security Researches

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages, CVE-2025-55709

CVE, Research URL

CVE-2025-55709

Home page URL

Security reports for Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Application

Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages

Published on
Aug 15, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visual Composer Visual Composer Website Builder allows Stored XSS. This issue affects Visual Composer Website Builder: from n/a through n/a.
Affected versions
Min -, max 45.15.0.
Status
vulnerable
Previous vulnerability researches
FundEngine – Donation and Crowdfunding Platform (CVE-2022-0788) , Jun 07, 2024
FundEngine – Donation and Crowdfunding Platform (CVE-2024-34758) , Jun 07, 2024
FundEngine – Donation and Crowdfunding Platform (CVE-2025-48302) , Aug 12, 2025
FundEngine – Donation and Crowdfunding Platform (CVE-2024-6698) , Aug 02, 2024
FundEngine – Donation and Crowdfunding Platform (CVE-2025-47459) , May 09, 2025
New vulnerability
B Slider – Slider for your block editor (CVE-2025-8676) , Aug 16, 2025
B Slider – Slider for your block editor (CVE-2025-8680) , Aug 16, 2025
Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress (CVE-2025-55708) , Aug 16, 2025
WP Voting (CVE-2025-49057) , Aug 16, 2025
Simplified Plugin (CVE-2025-53241) , Aug 16, 2025