1.3.18

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-07	CVE-2023-41804	Server-Side Request Forgery (SSRF) vulnerability in Brainstormforce Starter Templates Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Starter Templates — Elementor, WordPress & Beaver Builder Templates.This issue affects Starter Templates — Elementor, WordPress & Beaver Builder Templates: from n/a through 3.2.4. network low complexity brainstormforce CWE-918	5.4
2023-05-23	CVE-2022-46851	Cross-Site Request Forgery (CSRF) vulnerability in Brainstormforce Starter Templates Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Starter Templates plugin <= 3.1.20 versions. network low complexity brainstormforce CWE-352	8.8
2021-11-17	CVE-2021-42360	Resource Injection vulnerability in Brainstormforce Starter Templates On sites that also had the Elementor plugin for WordPress installed, it was possible for users with the edit_posts capability, which includes Contributor-level users, to import blocks onto any page using the astra-page-elementor-batch-process AJAX action. network brainstormforce CWE-99	3.5