Wpbakery Page Builder Clipboard Project

Wpbakery Page Builder Clipboard

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-5265

  • EPSS 0.43%
  • Veröffentlicht 13.06.2024 07:15:42
  • Zuletzt bearbeitet 21.11.2024 09:47:18

The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link attribute within the vc_single_image shortcode in all versions up to, and including, 7.6 due to insufficient input sanitization and output esc...

5.4

CVE-2021-24243

Exploit
  • EPSS 0.16%
  • Veröffentlicht 06.05.2021 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:52:40

An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users (subscriber+) to call it and set XSS payloads, which will b...

6.5

CVE-2021-24244

Exploit
  • EPSS 0.19%
  • Veröffentlicht 06.05.2021 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:52:40

An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email).