CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Patchstack•added 2026/02/02 8:28 a.m.•6 views

WordPress Ultimate Addons for WPBakery Page Builder plugin <= 3.19.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by haidv35 - VCS in WordPress Plugin Ultimate Addons for WPBakery Page Builder versions = 3.19.20...

6.4CVSS5.3AI score0.00222EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/05/23 8:27 a.m.•4 views

CVE-2024-5254

The Ultimate Addons for WPBakery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ultimateinfobanner shortcode in all versions up to, and including, 3.19.20 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.8AI score0.00222EPSS

Exploits0References1

ATTACKERKB•added 2024/07/17 7:15 a.m.•0 views

CVE-2024-5255

The Ultimate Addons for WPBakery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ultimatedualcolor shortcode in all versions up to, and including, 3.19.20 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS6.1AI score0.00222EPSS

Exploits0References3

Patchstack•added 2024/07/17 2:14 a.m.•3 views

WordPress Ultimate Addons for WPBakery Page Builder plugin <= 3.19.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by haidv35 in WordPress Plugin Ultimate Addons for WPBakery Page Builder versions = 3.19.20...

6.4CVSS5.5AI score0.00222EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/07/17 12:0 a.m.•3 views

PT-2024-35366 · WordPress · Ultimate Addons For Wpbakery

Name of the Vulnerable Software and Affected Versions: The Ultimate Addons for WPBakery plugin for WordPress versions up to, and including, 3.19.20 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the ultimate info banner...

6.4CVSS6.9AI score0.00222EPSS

Exploits0References7

Positive Technologies•added 2024/07/17 12:0 a.m.•3 views

PT-2024-35348 · WordPress · Ultimate Addons For Wpbakery

6.4CVSS6.9AI score0.00222EPSS

Exploits0References7

Positive Technologies•added 2024/07/17 12:0 a.m.•2 views

PT-2024-35353 · WordPress · Ultimate Addons For Wpbakery

Name of the Vulnerable Software and Affected Versions: The Ultimate Addons for WPBakery plugin for WordPress versions up to, and including, 3.19.20 Description: The issue is related to Stored Cross-Site Scripting via the plugin's ultimate info table shortcode due to insufficient input sanitizatio...

6.4CVSS5.9AI score0.00222EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by