Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/06/26 2:52 p.m.34 views

CVE-2026-56008 WordPress Fusion Builder plugin <= 3.15.4 - Privilege Escalation vulnerability

Contributor Privilege Escalation in Fusion Builder = 3.15.4 versions...

8.8CVSS0.00278EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/23 9:33 a.m.181 views

Exploit for CVE-2026-6279

CVE-2026-6279 Avada Builder = 3.15.2 — Unauthenticated RCE v...

9.8CVSS5.8AI score0.02163EPSS
Exploits4
Vulnrichment
Vulnrichment
added 2026/03/25 4:15 p.m.2 views

CVE-2026-32542 WordPress Fusion Builder plugin < 3.15.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeFusion Fusion Builder fusion-builder allows Reflected XSS.This issue affects Fusion Builder: from n/a through 3.15.0...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.17 views

CVE-2022-1386

The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the...

9.8CVSS6.5AI score0.71722EPSS
Exploits6References1
VulnCheck KEV
VulnCheck KEV
added 2024/01/02 12:0 a.m.5 views

VulnCheck KEV: CVE-2022-1386

The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the...

9.8CVSS7.4AI score0.71722EPSS
Exploits6References1
Rows per page
Query Builder