CVE-2026-3897
- EPSS 0.22%
- Veröffentlicht 27.05.2026 06:46:16
- Zuletzt bearbeitet 27.05.2026 14:50:47
The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `labb_admin_ajax` AJAX action in all versions up to, and including, 3.9.2 due to missing authorization checks and insufficient input sani...
CVE-2026-2029
- EPSS 0.19%
- Veröffentlicht 26.02.2026 01:24:15
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `[labb_pricing_item]` shortcode's `title` and `value` attributes in all versions up to, and including, 3.9.2 due to insufficient input sa...
CVE-2025-62990
- EPSS 0.13%
- Veröffentlicht 31.12.2025 12:57:22
- Zuletzt bearbeitet 23.04.2026 15:34:55
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in livemesh Livemesh Addons for Beaver Builder addons-for-beaver-builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from ...