3 matches found
CVE-2022-2716
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Text Editor' block in versions up to, and including, 2.5.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with access t...
CVE-2022-2716 Beaver Builder – WordPress Page Builder <= 2.5.5.2 - Authenticated Stored Cross-Site Scripting via Text Editor
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Text Editor' block in versions up to, and including, 2.5.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with access t...
CVE-2022-2716
The CVE-2022-2716 entry concerns Beaver Builder – WordPress Page Builder. Affected: Beaver Builder (WordPress plugin) versions up to and including 2.5.5.2. Issue: Stored Cross-Site Scripting via the Text Editor block caused by insufficient input sanitization and output escaping. Impact: Authentic...