CVE-2025-46472

Name of the Vulnerable Software and Affected Versions The Pack Elementor addons versions n/a through 2.1.2

Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in The Pack Elementor addons.

Recommendations For versions n/a through 2.1.2, update to a version later than 2.1.2 to resolve the issue. As a temporary workaround, consider restricting access to the affected addons to minimize the risk of exploitation.