2 matches found
CVE-2024-13592
CVE-2024-13592 : Local File Inclusion in the Team Builder For WPBakery Page Builder (WordPress) shortcode “team-builder-vc” affects all versions up to 1.0. Exploitation requires authenticated access (Contributor+) and can lead to arbitrary PHP code execution, data exposure, or broader impact. The...
CVE-2024-13591
CVE-2024-13591 affects Team Builder For WPBakery Page Builder (formerly Visual Composer) for WordPress. The vulnerability is a Stored Cross-Site Scripting flaw in the plugin’s ‘team-builder-vc’ shortcode, caused by insufficient input sanitization and output escaping on user-supplied attributes. I...