Vulnerabilities > Brizy > High

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2020-36714 Incorrect Authorization vulnerability in Brizy Brizy-Page Builder
The Brizy plugin for WordPress is vulnerable to authorization bypass due to a incorrect capability check on the is_administrator() function in versions up to, and including, 1.0.125.
network
low complexity
brizy CWE-863
8.1
2022-07-25 CVE-2022-2219 Unspecified vulnerability in Brizy Unyson
The Unyson WordPress plugin before 2.7.27 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting
network
low complexity
brizy
7.2