Cross-site Scripting Vulnerability in Crocoblock JetElements for Elementor
CVE-2025-55714
6.5MEDIUM
What is CVE-2025-55714?
A Cross-site Scripting (XSS) vulnerability exists in Crocoblock's JetElements for Elementor, allowing attackers to inject malicious scripts. This vulnerability affects versions from n/a up to 2.7.9, posing significant risks to users by enabling the storage of malicious data that can execute in the context of other users' sessions.
Affected Version(s)
JetElements For Elementor <= 2.7.9