PT-2025-43863 · WordPress · Brainstorm Force Ultimate Addons For Wpbakery Page Builder

Published

2025-10-27

Updated

2025-10-27

CVE-2025-48088

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Brainstorm Force Ultimate Addons for WPBakery Page Builder versions prior to 3.21.1

Description The software contains a flaw related to improper input handling during web page generation, leading to a Stored Cross-site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerability affects the Ultimate Addons for WPBakery Page Builder plugin.

Recommendations Update to version 3.21.1 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-48088

Affected Products

Brainstorm Force Ultimate Addons For Wpbakery Page Builder

CVE-2025-48088

Weakness Enumeration

Related Identifiers

Affected Products

References · 5