PT-2026-23246 · WordPress · Kamleshyadav Wp Bakery Autoresponder Addon+1

Phat Rio

·

Publicado

2026-03-05

·

Atualizado

2026-03-05

·

CVE-2026-27363

CVSS v3.1

7.1

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions kamleshyadav WP Bakery Autoresponder Addon versions through 1.0.6
Description The kamleshyadav WP Bakery Autoresponder Addon contains a flaw related to improper input handling during web page creation, which allows for Stored Cross-site Scripting (XSS). This means that malicious scripts can be injected into web pages viewed by other users. The affected component is the 'vc-autoresponder-addon'.
Recommendations Update kamleshyadav WP Bakery Autoresponder Addon to a version later than 1.0.6.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2026-27363

Produtos afetados

Wp Bakery Autoresponder Addon
Kamleshyadav Wp Bakery Autoresponder Addon