CVE-2025-8689 | Elements Plus Plugin up to 2.16.4 on WordPress Widget cross site scripting

A vulnerability identified as problematic has been detected in Elements Plus Plugin up to 2.16.4 on WordPress. Affected by this issue is some unknown functionality of the component Widget. Performing manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-8689. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More