What this page helps you verify fast
This hub clusters every indexed record for Fusion Page Builder so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.
Review known vulnerability records for the WordPress plugin Fusion Page Builder (`fusion`), including severity, CVE references, affected versions, and patch status.
Recent tracked CVEs on this page include CVE-2025-31549 and CVE-2024-37962, so operators can jump from disclosure to patch validation without scanning the full feed first.
This hub clusters every indexed record for Fusion Page Builder so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.
These recent records surface the CVE strings, patch cues, and direct report links most operators need first.
The Fusion plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it...
The Fusion plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.1 due to insufficient input sanitization and output escaping. This makes it...
Sorted by latest disclosure date so newly published issues surface first.
The Fusion plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject...
The Fusion plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject...