Lucene search
+L

66 matches found

Positive Technologies
Positive Technologies
added 2023/04/03 12:0 a.m.6 views

PT-2023-16241 · WordPress · Image Over Image For Wpbakery Page Builder

Name of the Vulnerable Software and Affected Versions: The Image Over Image For WPBakery Page Builder WordPress plugin versions prior to 3.0 Description: The issue arises from the plugin's failure to validate and escape certain shortcode attributes before outputting them in a page or post,...

5.4CVSS5.2AI score0.00471EPSS
Exploits2References5
CNVD
CNVD
added 2021/05/14 12:0 a.m.9 views

WordPress WPBakery Page Builder Clipboard Plugin Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress WPBakery Page Builder Visual Composer...

5.4CVSS5.8AI score0.00703EPSS
Exploits2References1
CNVD
CNVD
added 2020/11/23 12:0 a.m.29 views

WordPress WPBakery plugin cross-site scripting vulnerability

WordPress is a blogging platform from the WordPress Foundation developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.Wpbakery Page Builder is a plugin that is applied to generate an editor on a web page. A cross-site scripting...

6.4CVSS5.6AI score0.00691EPSS
Exploits2References1
OSV
OSV
added 2020/11/16 4:15 a.m.7 views

CVE-2020-28650

The WPBakery plugin before 6.4.1 for WordPress allows XSS because it calls ksesremovefilters to disable the standard WordPress XSS protection mechanism for the Author and Contributor roles...

5.4CVSS6.1AI score0.00691EPSS
Exploits2References1
Prion
Prion
added 2020/11/16 4:15 a.m.13 views

Design/Logic Flaw

The WPBakery plugin before 6.4.1 for WordPress allows XSS because it calls ksesremovefilters to disable the standard WordPress XSS protection mechanism for the Author and Contributor roles...

3.5CVSS5.3AI score0.00691EPSS
Exploits2References1Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2020/10/07 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-28650

The WPBakery plugin before 6.4.1 for WordPress allows XSS because it calls ksesremovefilters to disable the standard WordPress XSS protection mechanism for the Author and Contributor roles...

6.4CVSS6AI score0.00691EPSS
Exploits2References1
Rows per page
Query Builder