WordPress Beaver Builder Plugin (Starter Version) plugin <= 2.9.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'auto_play' vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'autoplay' vulnerability discovered by Sulabh Jain pentestmonkey11 in WordPress Plugin Beaver Builder Plugin Starter Version versions = 2.9.2.1...

CVE-2025-8427

The Beaver Builder Plugin Starter Version plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘autoplay’ parameter in all versions up to, and including, 2.9.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

CVE-2025-8427

The Beaver Builder Plugin Starter Version plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘autoplay’ parameter in all versions up to, and including, 2.9.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

CVE-2025-8427

Beaver Builder Plugin (Starter Version) for WordPress (

CVE-2025-8427 Beaver Builder Plugin (Starter Version) <= 2.9.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'auto_play'

The Beaver Builder Plugin Starter Version plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘autoplay’ parameter in all versions up to, and including, 2.9.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

WordPress plugin Beaver Builder Plugin Starter Version 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-43511

Name of the Vulnerable Software and Affected Versions Beaver Builder Plugin Starter Version versions through 2.9.2.1 Description The Beaver Builder Plugin Starter Version for WordPress is susceptible to Stored Cross-Site Scripting through the auto play parameter. Insufficient input sanitization a...

WordPress plugin Testimonial Post type 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exis...

WordPress WP Posts Carousel plugin <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via auto_play_timeout Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via autoplaytimeout Parameter vulnerability discovered by Krzysztof Zając in WordPress Plugin WP Posts Carousel versions = 1.3.7...

Vulnerability to cause a Windows system crash, hardware experts published PoC exploit code-exploit warning-the black bar safety net

Bitdefender company researcher Marius Tivadar on GitHub released a PoC code, even if the computer is locking the case in a few seconds cause Windows computers to crash. ! The PoC code is the use of Microsoft processing an NTFS file system image process in the presence of a vulnerability, the code...

USB Sticks Can Trigger BSOD – Even on a Locked Device

A proof of concept for easily generating the blue screen of death BSOD on Windows devices has been released, along with a video demonstrating that the denial-of-service effect can take place even if the device is locked. Using a handcrafted image of a Windows NT file system NTFS loaded onto a USB...

openSUSE Security Update : chromium (openSUSE-2018-381)

This update for Chromium to version 66.0.3359.117 fixes the following issues : Security issues fixed boo1090000 : - CVE-2018-6085: Use after free in Disk Cache - CVE-2018-6086: Use after free in Disk Cache - CVE-2018-6087: Use after free in WebAssembly - CVE-2018-6088: Use after free in PDFium -...

Security update for chromium (important)

This update for Chromium to version 66.0.3359.117 fixes the following issues: Security issues fixed boo1090000: - CVE-2018-6085: Use after free in Disk Cache - CVE-2018-6086: Use after free in Disk Cache - CVE-2018-6087: Use after free in WebAssembly - CVE-2018-6088: Use after free in PDFium -...