4 matches found
CVE-2025-3669 Supreme Addons for Beaver Builder <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via auto_qrcodesabb Shortcode
The Supreme Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's autoqrcodesabb shortcode in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2025-3669 Supreme Addons for Beaver Builder <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via auto_qrcodesabb Shortcode
The Supreme Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's autoqrcodesabb shortcode in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
WordPress Supreme Addons for Beaver Builder plugin <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via auto_qrcodesabb Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via autoqrcodesabb Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin Supreme Addons for Beaver Builder versions = 1.0.9...
CVE-2025-3669
creationtimestamp| type| source ---|---|--- 2025-04-15 21:50:00+00:00| seen| https://bsky.app/profile/meson.ninja/post/3lmv2nbfo722l...