VYPR

Magic Buttons For Elementor

by Pwrplugins

Source repositories

CVEs (2)

  • CVE-2025-6687MedJul 2, 2025
    risk 0.42cvss 6.4epss 0.00

    The Magic Buttons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's magic-button shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on the 'icon' user supplied attributes.…

  • CVE-2025-6686MedJul 2, 2025
    risk 0.42cvss 6.4epss 0.00

    The Magic Buttons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's magic-button shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on the 'text' user supplied attribute.…