CVE-2023-5087

Name of the Vulnerable Software and Affected Versions The Page Builder: Pagelayer WordPress plugin versions prior to 1.7.8

Description The issue allows attackers with author privileges and higher to insert malicious JavaScript inside a post's header or footer code. This can be exploited by inserting malicious code in the post's header or footer, potentially leading to security breaches.

Recommendations For versions prior to 1.7.8, update to version 1.7.8 or later to resolve the issue. As a temporary workaround, consider restricting the ability of authors and higher-privileged users to insert custom JavaScript code in post headers and footers until the update is applied.