Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:21 p.m.8 views

CVE-2021-24243

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users subscriber+ to call it and set XSS payloads, which will be triggered in all backend pages...

5.4CVSS5.9AI score0.00703EPSS
Exploits2References1
OSV
OSV
added 2021/05/06 1:15 p.m.3 views

CVE-2021-24243

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users subscriber+ to call it and set XSS payloads, which will be triggered in all backend pages...

5.4CVSS6.1AI score0.00703EPSS
Exploits2References2
CVE
CVE
added 2021/05/05 6:39 p.m.56 views

CVE-2021-24243

CVE-2021-24243 affects the WPBakery Page Builder Clipboard WordPress plugin (before 4.5.6). The vulnerability arises from an AJAX action lacking capability checks and input sanitization, allowing low-privilege users (subscriber+) to submit crafted payloads that trigger XSS on all backend pages. P...

5.4CVSS5.2AI score0.00703EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/05/05 6:39 p.m.19 views

CVE-2021-24243 WPBakery Page Builder Clipboard < 4.5.6 - Subscriber+ Stored Cross-Site Scripting (XSS)

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users subscriber+ to call it and set XSS payloads, which will be triggered in all backend pages...

5.4AI score0.00703EPSS
Exploits2References2
Rows per page
Query Builder