CVE-2025-58254
BaseFortify
Publication date: 2025-09-22
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dtbaker | stylepress_for_elementor | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-site Scripting (XSS) flaw in the WordPress StylePress for Elementor Plugin (up to version 1.2.1). It allows attackers with Contributor-level privileges to inject malicious scripts, such as redirects or unwanted advertisements, into web pages generated by the plugin. These scripts execute when visitors access the affected site, potentially compromising user interactions or site integrity. [1]
How can this vulnerability impact me? :
The vulnerability can lead to attackers injecting malicious scripts into your website, which execute when visitors view the site. This can result in unauthorized redirects, display of unwanted content, or other harmful actions affecting users. Since the plugin is abandoned with no official fix, the risk remains unless mitigated by virtual patching or replacing the plugin. Deactivating the plugin alone does not fully remove the risk. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this vulnerability involves identifying if the WordPress site is running StylePress for Elementor plugin version 1.2.1 or earlier. Since the vulnerability allows stored XSS via input fields accessible to users with Contributor privileges, monitoring for unusual script injections or unexpected HTML payloads in web pages generated by the plugin is key. However, no specific detection commands are provided. It is recommended to use professional incident response services and plugin-based malware scanners, though the latter may be unreliable for this issue. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the vulnerable StylePress for Elementor plugin with an alternative plugin, as no official patch or fix is available and the plugin appears abandoned. Deactivating the plugin alone does not fully eliminate the risk unless a virtual patch (vPatch) is applied. Patchstack offers vPatching as a method to auto-mitigate this vulnerability. Additionally, if the website is suspected to be compromised, professional incident response services are recommended. [1]