3 matches found
CVE-2024-50430
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Beaver Builder Beaver Builder beaver-builder-lite-version allows Stored XSS.This issue affects Beaver Builder: from n/a through = 2.8.3.7...
PT-2024-31123 · WordPress · The Beaver Builder
Name of the Vulnerable Software and Affected Versions: The Beaver Builder – WordPress Page Builder plugin versions up to, and including, 2.8.1.2 Description: The issue is related to Stored Cross-Site Scripting via the photo widget crop attribute due to insufficient input sanitization and output...
PT-2024-16503 · WordPress · The Beaver Builder
Name of the Vulnerable Software and Affected Versions: The Beaver Builder – WordPress Page Builder plugin for WordPress versions up to, and including, 2.7.4.2 Description: The issue is related to Stored Cross-Site Scripting via the link url parameter in the audio widget, caused by insufficient...