Lucene search
K

5 matches found

Patchstack
Patchstack
added 2025/06/19 8:8 a.m.13 views

WordPress WPBakery Page Builder plugin <= 8.4.1 - Authenticated (Author+) Stored Cross-Site Scripting via Grid Builder vulnerability

Authenticated Author+ Stored Cross-Site Scripting via Grid Builder vulnerability discovered by zer0gh0st in WordPress Plugin WPBakery Page Builder versions = 8.4.1...

6.4CVSS5.3AI score0.00169EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/06/19 7:41 a.m.14 views

CVE-2025-4965

creationtimestamp| type| source ---|---|--- 2025-06-19 07:41:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18841 2025-06-19 09:38:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrxa2s24y32r 2025-06-19 11:39:09+00:00| seen|...

6.4CVSS4.8AI score0.00169EPSS
Exploits0References3
NVD
NVD
added 2025/06/19 7:15 a.m.9 views

CVE-2025-4965

The WPBakery Page Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Grid Builder feature in all versions up to, and including, 8.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possibl...

6.4CVSS0.00169EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/19 6:44 a.m.5 views

CVE-2025-4965 WPBakery Page Builder <= 8.4.1 - Authenticated (Author+) Stored Cross-Site Scripting via Grid Builder

The WPBakery Page Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Grid Builder feature in all versions up to, and including, 8.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possibl...

6.4CVSS5.8AI score0.00169EPSS
Exploits0References2
CVE
CVE
added 2025/06/19 6:44 a.m.52 views

CVE-2025-4965

CVE-2025-4965 (WPBakery Page Builder for WordPress) is a stored XSS vulnerability in the Grid Builder of WPBakery Page Builder, affecting all versions up to 8.4.1. The root cause is insufficient input sanitization and output escaping on user-supplied attributes, enabling an authenticated attacker...

6.4CVSS5.7AI score0.00169EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder