Landing Page Builder Security Vulnerabilities and Issues — Landing Page Builder CVE List

PluginopsLanding Page Builder

3 matches found

CVE•added 2023/12/07 11:32 a.m.•84 views

CVE-2023-48325

CVE-2023-48325: Open Redirect in Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing Pages (PluginOps Landing Page Builder) up to version 1.5.1.5. Root cause: insufficient validation of the redirect URL, enabling URL redirection to an untrusted site. Impact: informati...

6.1CVSS7AI score0.00238EPSS

CVE•added 2023/01/23 2:32 p.m.•55 views

CVE-2022-4718

The CVE-2022-4718 entry concerns the Landing Page Builder WordPress plugin prior to 1.4.9.9. The vulnerability arises because the plugin does not validate and escape certain shortcode attributes before echoing them in the page, enabling Stored Cross-Site Scripting via attacker-controlled shortcod...

5.4CVSS5.3AI score0.00198EPSS

CVE•added 2023/09/27 7:22 a.m.•36 views

CVE-2023-40675

CVE-2023-40675 refers to a Stored Cross-Site Scripting (XSS) vulnerability in the PluginOps Landing Page Builder plugin for WordPress, affecting versions up to 1.5.1.2. The vulnerability requires authentication with admin+ privileges and is classified as a stored XSS issue (no explicit exploit de...

5.9CVSS5.1AI score0.00134EPSS