Vulnerability Details CVE-2025-46254
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visual Composer Visual Composer Website Builder visualcomposer allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through <= 45.10.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.4%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2025-46254
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:-
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:20.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:21.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:22.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:23.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:24.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:25.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:26.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:27.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:27.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:28.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:29.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:30.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:30.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:31.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:31.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:32.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:33.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:34.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:34.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:35.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:35.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:36.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:37.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:38.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:38.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:39.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:39.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:40.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:41.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:41.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:42.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:42.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:43.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.2
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.2.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.2.2
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.3.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:44.3.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.0.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.1.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.1.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.1.2
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.1.3
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.2.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.3.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.4.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.4.1
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.5.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.6.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.7.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.8.0
-
cpe:2.3:a:visualcomposer:visual_composer_website_builder:45.9.0