WordPress WP Page Builder plugin <= 1.2.3 - Multiple Stored Cross-Site Scripting (XSS) vulnerabilities

2021-04-0800:00:00

WordFence

patchstack.com

0.001 Low

EPSS

Percentile

24.9%

Multiple Stored Cross-Site Scripting (XSS) vulnerabilities discovered by WordFence in WordPress WP Page Builder plugin (versions <= 1.2.3).

Solution

           Update the WordPress WP Page Builder plugin to the latest available version (at least 1.2.4).

CPENameOperatorVersion
wp page builderle1.2.3

CPE	Name	Operator	Version
	wp page builder	le	1.2.3

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24208

wordpress.org/plugins/wp-pagebuilder/#developers

www.wordfence.com/blog/2021/04/vulnerabilities-patched-in-wp-page-builder/

0.001 Low

EPSS

Percentile

24.9%

Related for PATCHSTACK:D0CF07F9BFA8573B7A566D13FDF84F5A