Vulnerabilities > Brainstormforce > Ultimate Addons FOR Beaver Builder
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-12 | CVE-2024-43151 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder – Lite allows Stored XSS.This issue affects Ultimate Addons for Beaver Builder – Lite: from n/a through 1.5.9. | 5.4 |
| 2024-05-17 | CVE-2023-51398 | Unspecified vulnerability in Brainstormforce Ultimate Addons for Beaver Builder Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder allows Privilege Escalation.This issue affects Ultimate Addons for Beaver Builder: from n/a through 1.35.14. | 8.8 |
| 2024-05-17 | CVE-2023-51401 | Unspecified vulnerability in Brainstormforce Ultimate Addons for Beaver Builder Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder allows Relative Path Traversal.This issue affects Ultimate Addons for Beaver Builder: from n/a through 1.35.13. | 6.5 |
| 2024-03-30 | CVE-2024-2140 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Advanced Icons widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-03-30 | CVE-2024-2141 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Button widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-03-30 | CVE-2024-2142 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Info Table widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-03-30 | CVE-2024-2143 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Heading widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-03-30 | CVE-2024-2144 | Cross-site Scripting vulnerability in Brainstormforce Ultimate Addons for Beaver Builder The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Separator widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-01-17 | CVE-2023-23882 | Unspecified vulnerability in Brainstormforce Ultimate Addons for Beaver Builder 1.5.5 Missing Authorization vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder – Lite.This issue affects Ultimate Addons for Beaver Builder – Lite: from n/a through 1.5.5. | 4.3 |