Lucene search
+L

12 matches found

attackerkb
attackerkb
added 2026/06/20 1:36 p.m.6 views

CVE-2019-25763

WordPress Ultimate Addons for Beaver Builder 1.2.4.1 contains an authentication bypass vulnerability that allows attackers to gain unauthorized access by exploiting the social media login form functionality. Attackers can submit a POST request to the admin-ajax.php endpoint with the...

9.8CVSS5.9AI score0.00428EPSS
Exploits0References3
patchstack
patchstack
added 2026/04/09 6:38 p.m.5 views

WordPress Beaver Builder Page Builder - Drag and Drop Website Builder plugin <= 2.10.1.1 - Authenticated (Author+) Stored Cross-Site Scripting via 'settings[js]' vulnerability

WordPress Beaver Builder Page Builder - Drag and Drop Website Builder plugin = 2.10.1.1 - Authenticated Author+ Stored Cross-Site Scripting via 'settingsjs' vulnerability discovered by WordFence in WordPress Plugin Beaver Builder versions = 2.10.1.1...

6.4CVSS5.9AI score0.00261EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/12/02 10:23 a.m.5 views

WordPress Beaver Builder plugin <= 2.8.4.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Beaver Builder versions = 2.8.4.3...

6.5CVSS6.1AI score0.00309EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/09/27 1:29 a.m.6 views

WordPress Beaver Builder plugin <= 2.8.3.6 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Button Group Module vulnerability

Authenticated Contributor+ Stored DOM-Based Cross-Site Scripting via Button Group Module vulnerability discovered by zer0gh0st in WordPress Plugin Beaver Builder versions = 2.8.3.6...

6.4CVSS6.1AI score0.00312EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/09/27 12:0 a.m.11 views

WordPress Beaver Builder Plugin <= 2.8.3.6 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.8.3.6 Fixed in 2.8.3.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9049 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5a0979556e47 Credits zer0gh0st Required...

6.4CVSS5.8AI score0.00312EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2024/07/21 7:24 a.m.22 views

CVE-2024-37500 WordPress Beaver Builder plugin <= 2.8.2.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Beaver Builder Team Beaver Builder allows Stored XSS.This issue affects Beaver Builder: from n/a through 2.8.2.2...

6.5CVSS0.00314EPSS
Exploits0References1
patchstack
patchstack
added 2024/07/04 12:0 a.m.15 views

WordPress Beaver Builder Plugin <= 2.8.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.8.2.2 Fixed in 2.8.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37500 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a2cc031cf30b Credits João Pedro S Alcântara Kinorth Requir...

6.5CVSS6.6AI score0.00314EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/05/07 8:21 a.m.4 views

WordPress Beaver Builder plugin <= 2.8.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by wesley wcraft in WordPress Plugin Beaver Builder versions = 2.8.1.1...

6.4CVSS5.7AI score0.00419EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/05/07 12:0 a.m.13 views

WordPress Beaver Builder Plugin <= 2.8.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.8.1.1 Fixed in 2.8.1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3923 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 38b338352313 Credits wesley wcraft Require...

6.4CVSS5.8AI score0.00419EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2024/02/21 12:0 a.m.10 views

WordPress Beaver Builder Plugin <= 2.7.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.7.4.2 Fixed in 2.7.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0871 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4021bb2efa2b Credits WordFence Required...

5.4CVSS5.7AI score0.00399EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2023/12/26 12:0 a.m.20 views

WordPress Beaver Builder Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-50889 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID c34e72dc456f Credits Rafie Muhammad Patchstack Required...

6.5CVSS6.6AI score0.00321EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2022/08/29 12:0 a.m.32 views

WordPress Beaver Builder plugin <= 2.5.5.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability via Text Editor

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Zhouyuan Yang in WordPress Beaver Builder plugin versions = 2.5.5.2. Solution Update the WordPress Beaver Builder plugin to the latest available version at least 2.5.5.3...

6.4CVSS2.6AI score0.00457EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder