Brizy security warning 2-12-2025

Christian Clawson

• February 12, 2025 20:48

I received this warning of login to my website 2/12/2025; is there a fix pending?

Christian Clawson, Peace Lutheran Church.  jcncten@gmail.com

- - - - -

WordPress Plugin Vulnerabilities

Brizy Pro <= 2.6.1 - Reflected Cross-Site Scripting

Description

The Brizy Pro plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.

Affects Plugins

 

brizy-pro

No known fix

References

CVE

CVE-2025-22763

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/463c11ba-f307-4ab5-8de7-09f3a113cddd

0

• 

  KC George

  • February 13, 2025 08:21

  Hello Christian,

  We had fixed this vulnerability in a later version. To use the vulnerability patch, please update to these Brizy and Brizy Pro versions.

  

  0

Please sign in to leave a comment.