PT-2023-31539 · WordPress · Livemesh Wpbakery Page Builder Addons

Abu Hurayra

Publicado

2023-12-14

Atualizado

2023-12-18

CVE-2023-50370

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Livemesh WPBakery Page Builder Addons versions through 3.5

Description The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Stored XSS attacks.

Recommendations For versions through 3.5, update to a version later than 3.5 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2023-50370

Produtos afetados

Livemesh Wpbakery Page Builder Addons

PT-2023-31539 · WordPress · Livemesh Wpbakery Page Builder Addons

CVE-2023-50370

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5