Stored XSS Vulnerability in Visual Composer Website Builder
CVE-2024-27997
5.9MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 19 March 2024
What is CVE-2024-27997?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visualcomposer Visual Composer Website Builder allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through 45.6.0.
Affected Version(s)
Visual Composer Website Builder <= 45.6.0