Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/15 5:4 a.m.21 views

CVE-2025-2104

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized post publication due to insufficient validation on the pagelayersavecontent function in all versions up to, and including, 1.9.8. This makes it possible for authenticated attackers, with...

4.3CVSS6.6AI score0.00269EPSS
Exploits0References1
NVD
NVD
added 2025/03/13 5:15 a.m.27 views

CVE-2025-2104

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized post publication due to insufficient validation on the pagelayersavecontent function in all versions up to, and including, 1.9.8. This makes it possible for authenticated attackers, with...

4.3CVSS0.00269EPSS
Exploits0References2
CVE
CVE
added 2025/03/13 4:21 a.m.71 views

CVE-2025-2104

CVE-2025-2104 affects Page Builder: Pagelayer (WordPress). The vulnerability arises from insufficient validation in pagelayer_save_content(), allowing authenticated attackers with Contributor-level access and above to bypass post moderation and publish posts. Affected versions: up to 1.9.8 per CV...

4.3CVSS4.5AI score0.00269EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/13 4:21 a.m.9 views

CVE-2025-2104 Page Builder: Pagelayer – Drag and Drop website builder <= 1.9.9 - Missing Authorization to Authenticated (Contributor+) Post Publication

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized post publication due to insufficient validation on the pagelayersavecontent function in all versions up to, and including, 1.9.8. This makes it possible for authenticated attackers, with...

4.3CVSS4.5AI score0.00269EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/13 4:21 a.m.29 views

CVE-2025-2104 Page Builder: Pagelayer – Drag and Drop website builder <= 1.9.9 - Missing Authorization to Authenticated (Contributor+) Post Publication

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized post publication due to insufficient validation on the pagelayersavecontent function in all versions up to, and including, 1.9.8. This makes it possible for authenticated attackers, with...

4.3CVSS0.00269EPSS
Exploits0References2
Rows per page
Query Builder