5 matches found
CVE-2024-3923
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the linktarget parameter in all versions up to, and including, 2.8.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...
CVE-2024-3923 Beaver Builder – WordPress Page Builder <= 2.8.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the linktarget parameter in all versions up to, and including, 2.8.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...
CVE-2024-3923 Beaver Builder – WordPress Page Builder <= 2.8.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the linktarget parameter in all versions up to, and including, 2.8.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...
CVE-2024-3923
Technical details about CVE-2024-3923 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories to obtain affected versions, impact, and fixes.
WordPress Beaver Builder Plugin <= 2.8.1.1 is vulnerable to Cross Site Scripting (XSS)
Software Beaver Builder Type Plugin Vulnerable versions = 2.8.1.1 Fixed in 2.8.1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3923 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 38b338352313 Credits wesley wcraft Require...