Vulnerabilities > Brainstormforce

DATE CVE VULNERABILITY TITLE RISK
2024-06-19 CVE-2023-36676 Unspecified vulnerability in Brainstormforce Spectra
Missing Authorization vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6.
network
low complexity
brainstormforce
8.8
2024-06-19 CVE-2023-36684 Unspecified vulnerability in Brainstormforce Convert PRO
Missing Authorization vulnerability in Brainstorm Force Convert Pro.This issue affects Convert Pro: from n/a through 1.7.5.
network
low complexity
brainstormforce
critical
9.8
2024-06-19 CVE-2023-41805 Missing Authorization vulnerability in Brainstormforce Starter Templates
Missing Authorization vulnerability in Brainstorm Force Premium Starter Templates, Brainstorm Force Starter Templates astra-sites.This issue affects Premium Starter Templates: from n/a through 3.2.5; Starter Templates: from n/a through 3.2.5.
network
low complexity
brainstormforce CWE-862
6.5
2024-06-19 CVE-2023-44148 Unspecified vulnerability in Brainstormforce Astra
Missing Authorization vulnerability in Brainstorm Force Astra Bulk Edit.This issue affects Astra Bulk Edit: from n/a through 1.2.7.
network
low complexity
brainstormforce
8.8
2024-06-19 CVE-2023-44151 Unspecified vulnerability in Brainstormforce Pre-Publish Checklist
Missing Authorization vulnerability in Brainstorm Force Pre-Publish Checklist.This issue affects Pre-Publish Checklist: from n/a through 1.1.1.
network
low complexity
brainstormforce
8.8
2024-06-14 CVE-2023-51376 Missing Authorization vulnerability in Brainstormforce Surefeedback
Missing Authorization vulnerability in Brainstorm Force ProjectHuddle Client Site.This issue affects ProjectHuddle Client Site: from n/a through 1.0.34.
network
low complexity
brainstormforce CWE-862
4.3
2024-06-13 CVE-2024-5757 Cross-site Scripting vulnerability in Brainstormforce Elementor - Header, Footer & Blocks Template
The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url attribute within the plugin's Site Title widget in all versions up to, and including, 1.6.35 due to insufficient input sanitization and output escaping.
network
low complexity
brainstormforce CWE-79
5.4
2024-01-17 CVE-2023-23882 Unspecified vulnerability in Brainstormforce Ultimate Addons for Beaver Builder 1.5.5
Missing Authorization vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder – Lite.This issue affects Ultimate Addons for Beaver Builder – Lite: from n/a through 1.5.5.
network
low complexity
brainstormforce
4.3
2023-12-29 CVE-2023-51402 Unspecified vulnerability in Brainstormforce Ultimate Addons for Wpbakery Page Builder
Cross-Site Request Forgery (CSRF) vulnerability in Brain Storm Force Ultimate Addons for WPBakery Page Builder.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a through 3.19.17.
network
low complexity
brainstormforce
8.8
2023-12-29 CVE-2023-51397 Unspecified vulnerability in Brainstormforce WP Remote Site Search 1.0.4
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4.
network
low complexity
brainstormforce
5.4