Lucene search
K

4 matches found

Circl
Circl
added 2024/04/11 8:10 a.m.8 views

CVE-2024-2289

creationtimestamp| type| source ---|---|--- 2024-04-11 08:10:06+00:00| seen| https://t.me/arpsyndicate/4476...

6.4CVSS8.7AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2024/04/09 6:59 p.m.85 views

CVE-2024-2289

PowerPack Lite for Beaver Builder (WordPress plugin) is vulnerable to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied attributes. The issue affects all versions up to 1.3.0 and can allow authenticated attackers with contributor-level and abo...

6.4CVSS7.6AI score0.0034EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/09 6:59 p.m.14 views

CVE-2024-2289 PowerPack Lite for Beaver Builder <= 1.3.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via element link

The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link in multiple elements in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS7.4AI score0.0034EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/19 12:0 a.m.19 views

WordPress PowerPack Lite for Beaver Builder Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software PowerPack Lite for Beaver Builder Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.0.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2289 Patch priority Low CVSS severity Low 6.5 Developer IdeaBox Creations PSID 9d2284f4a282 Credits...

6.4CVSS5.8AI score0.0034EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder