CVE-2026-39636

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions livemesh Livemesh Addons for Elementor versions through 9.0

Description A stored cross-site scripting (XSS) issue exists in livemesh Livemesh Addons for Elementor. This allows for the injection of malicious scripts through improper input neutralization during web page generation.

Recommendations Update livemesh Livemesh Addons for Elementor to a version newer than 9.0.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2026-39636

Affected Products

Livemesh Addons For Elementor

CVE-2026-39636

Weakness Enumeration

Related Identifiers

Affected Products

References · 3