Borderless Security Vulnerabilities and Issues — Borderless CVE List

VisualmodoBorderless

7 matches found

CVE•added 2023/09/03 11:16 a.m.•55 views

CVE-2023-38518

CVE-2023-38518 concerns the WordPress plugin Borderless by Visualmodo, affected versions are ≤ 1.4.8. The vulnerability is described as an authenticated (admin+) Stored Cross-Site Scripting (XSS) flaw, allowing an attacker with admin+ privileges to inject scripts that execute in other users’ sess...

5.9CVSS5AI score0.00079EPSS

CVE•added 2024/12/06 1:7 p.m.•55 views

CVE-2024-54211

CVE-2024-54211 is a Cross-Site Scripting (XSS) vulnerability affecting the WordPress plugin Borderless (Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg) version up to 1.5.8. The issue arises from improper neutralization of input during web page generation. Public references con...

5.9CVSS7.2AI score0.00138EPSS

CVE•added 2024/05/17 5:59 a.m.•51 views

CVE-2024-34757

CVE-2024-34757 is a Stored XSS vulnerability (Improper Neutralization of Input During Web Page Generation) in Visualmodo Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg. The issue affects Borderless from version before 1.5.3, causing stored cross-site scripting thr...

6.5CVSS5.9AI score0.00287EPSS

CVE•added 2025/01/31 4:21 a.m.•50 views

CVE-2024-10867

CVE-2024-10867 refers to the Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) via SVG file uploads in all versions up to and including 1.5.9, caused by insufficient input sanitization and out...

5.4CVSS7.4AI score0.00189EPSS

CVE•added 2025/01/30 1:41 p.m.•46 views

CVE-2024-11600

CVE-2024-11600 affects the WordPress plugin Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg (versions up to 1.5.9). The issue is authenticated Remote Code Execution via the write_config function, caused by insufficient sanitization of an imported JSON file, allowin...

7.2CVSS7.5AI score0.00812EPSS

CVE•added 2025/01/30 1:41 p.m.•43 views

CVE-2024-11583

CVE-2024-11583 (Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg) affects Borderless versions up to and including 1.5.9. The vulnerability is a missing capability check in the remove_zipped_font function, enabling authenticated attackers with Subscriber-level access...

4.3CVSS4.3AI score0.00066EPSS

CVE•added 2024/05/14 10:31 p.m.•28 views

CVE-2024-4666

CVE-2024-4666 applies to Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg (WordPress). It is a stored XSS vulnerability in multiple widgets across all versions up to 1.5.3, caused by insufficient input sanitization and inadequate output escaping on user-supplied att...

6.4CVSS5.7AI score0.00341EPSS