CVE-2024-50431

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze allows Stored XSS.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50422

Missing Authorization vulnerability in Cloudways Breeze breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50422

Missing Authorization vulnerability in Cloudways Breeze breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50422

CVE-2024-50422 affects Breeze (WordPress Breeze plugin) up to version 2.1.14. Root cause is broken/Missing Authorization due to incorrectly configured access control security levels. The issue enables unauthorized access to Breeze functionality. Patch guidance is to upgrade to Breeze 2.1.15 or la...

CVE-2024-50422 WordPress Breeze plugin <= 2.1.14 - Broken Access Control vulnerability

Missing Authorization vulnerability in Cloudways Breeze breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50422 WordPress Breeze plugin <= 2.1.14 - Broken Access Control vulnerability

Missing Authorization vulnerability in Cloudways Breeze breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through = 2.1.14...

PT-2024-34196 · Cloudways · Cloudways Breeze

Name of the Vulnerable Software and Affected Versions: Cloudways Breeze versions 2.1.14 and earlier Description: The issue is related to a Missing Authorization vulnerability in Cloudways Breeze, which allows exploitation due to incorrectly configured access control security levels...

CVE-2024-50431

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze allows Stored XSS.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50431

CVE-2024-50431 is a stored XSS vulnerability in the Breeze WordPress plugin (Cloudways Breeze). It affects Breeze versions up to 2.1.14. The underlying issue is improper input neutralization during web page generation. Patch information from Patchstack indicates the fix is in Breeze 2.1.15. The C...

CVE-2024-50431 WordPress Breeze plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze allows Stored XSS.This issue affects Breeze: from n/a through = 2.1.14...

CVE-2024-50431 WordPress Breeze plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze allows Stored XSS.This issue affects Breeze: from n/a through = 2.1.14...

PT-2024-34206 · Cloudways · Cloudways Breeze

Name of the Vulnerable Software and Affected Versions: Cloudways Breeze versions 2.1.14 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...

WordPress Breeze Plugin <= 2.1.14 is vulnerable to Cross Site Scripting (XSS)

Software Breeze Type Plugin Vulnerable versions = 2.1.14 Fixed in 2.1.15 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50431 Patch priority Low CVSS severity Low 5.9 Developer Cloudways PSID 40fce694a577 Credits Felipe Alcantara Filiplain Required privilege...

VulnCheck KEV: CVE-2024-27188

Cloudways Breeze allows improper neutralization of input during web page creation, allowing for stored XSS...

CVE-2024-27188

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze.This issue affects Breeze: from n/a through = 2.1.3...

CVE-2024-27188 WordPress Breeze plugin <= 2.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze.This issue affects Breeze: from n/a through = 2.1.3...

CVE-2024-27188 WordPress Breeze plugin <= 2.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cloudways Breeze breeze.This issue affects Breeze: from n/a through = 2.1.3...

CVE-2024-27188

CVE-2024-27188 concerns the WordPress Breeze plugin (Cloudways Breeze) with a stored XSS vulnerability caused by improper neutralization of input during web page generation. Affected versions are Breeze through 2.1.3; the patch is to upgrade to version 2.1.4 or later. The issue requires the attac...

CVE-2024-27188

Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability in Cloudways Breeze allows Stored XSS.This issue affects Breeze: from n/a through 2.1.3. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

WordPress Breeze Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Breeze Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-27188 Patch priority Low CVSS severity Low 5.9 Developer Cloudways PSID ea09c0200c6b Credits Jorge Diaz ddiax Required privilege Administrator...