3 matches found
CVE-2023-6988
The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's extendbuilderrenderjs shortcode in all versions up to, and including, 1.0.239 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
CVE-2023-6988
CVE-2023-6988 affects the Colibri Page Builder WordPress plugin. The vulnerability is a Stored Cross-Site Scripting in the extend_builder_render_js shortcode, caused by insufficient input sanitization and output escaping on user-supplied attributes. It affects all versions up to and including 1.0...
WordPress Colibri Page Builder Plugin <= 1.0.239 is vulnerable to Cross Site Scripting (XSS)
Software Colibri Page Builder Type Plugin Vulnerable versions = 1.0.239 Fixed in 1.0.240 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6988 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID de0346984396 Credits Hung -mov Nguye...