Our managed hosting team is always hard at work, constantly fixing issues for our clients to ensure their websites run smoothly. Recently, we addressed a vulnerability in the Supreme Modules Lite plugin for the Divi Theme, Extra Theme, and Divi Builder. This particular issue, CVE-2024-5501, involved stored cross-site scripting via the ‘button_one_id’ parameter in versions up to 2.5.51. This flaw allowed authenticated users with contributor-level access to inject malicious scripts that could execute whenever a user accessed the affected page. By resolving these types of vulnerabilities, we protect our clients’ sites from potential security threats and keep them informed about the diligent work we do behind the scenes.