Colibri Page Builder Security Vulnerabilities and Issues — Colibri Page Builder CVE List

Lucene search

ExtendthemesColibri Page Builder

3 matches found

CVE•added 2024/05/02 5:15 p.m.•46 views

CVE-2024-3338

The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image alt data parameter in all versions up to, and including, 1.0.262 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level acc...

5.4CVSS5.7AI score0.00243EPSS

CVE•added 2024/05/02 5:15 p.m.•42 views

CVE-2024-3337

The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'colibri_breadcrumb_element' shortcode in all versions up to, and including, 1.0.272 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it poss...

6.4CVSS5.7AI score0.00229EPSS

CVE•added 2024/05/02 5:15 p.m.•36 views

CVE-2024-3340

The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'colibri-gallery-slideshow' shortcode in all versions up to, and including, 1.0.272 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possi...

5.4CVSS5.7AI score0.0025EPSS