Vulnerabilities > Wpbeaveraddons > Powerpack Lite FOR Beaver Builder > 1.2.9.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-29 | CVE-2024-7895 | Cross-site Scripting vulnerability in Wpbeaveraddons Powerpack Lite for Beaver Builder The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘type’ parameter in all versions up to, and including, 2.8.3.5 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-08-18 | CVE-2024-43330 | Cross-site Scripting vulnerability in Wpbeaveraddons Powerpack Lite for Beaver Builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack for Beaver Builder allows Reflected XSS.This issue affects PowerPack for Beaver Builder: from n/a before 2.37.4. | 6.1 |
| 2024-07-22 | CVE-2024-37409 | Unspecified vulnerability in Wpbeaveraddons Powerpack Lite for Beaver Builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Beaver Addons PowerPack Lite for Beaver Builder allows Stored XSS.This issue affects PowerPack Lite for Beaver Builder: from n/a through 1.3.0.4. | 5.4 |
| 2024-07-09 | CVE-2024-37410 | Unspecified vulnerability in Wpbeaveraddons Powerpack Lite for Beaver Builder Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Beaver Addons PowerPack Lite for Beaver Builder allows Path Traversal.This issue affects PowerPack Lite for Beaver Builder: from n/a through 1.3.0.3. | 7.2 |