Vulnerabilities > Brizy > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-20 | CVE-2020-36714 | Incorrect Authorization vulnerability in Brizy Brizy-Page Builder The Brizy plugin for WordPress is vulnerable to authorization bypass due to a incorrect capability check on the is_administrator() function in versions up to, and including, 1.0.125. | 8.1 |
2022-07-25 | CVE-2022-2219 | Unspecified vulnerability in Brizy Unyson The Unyson WordPress plugin before 2.7.27 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting | 7.2 |