2 matches found
PT-2025-43511
Name of the Vulnerable Software and Affected Versions Beaver Builder Plugin Starter Version versions through 2.9.2.1 Description The Beaver Builder Plugin Starter Version for WordPress is susceptible to Stored Cross-Site Scripting through the auto play parameter. Insufficient input sanitization a...
CVE-2025-8897
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘'flbuilder' parameter in all versions up to, and including, 2.9.2.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...