cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-2183,https://securityvulnerability.io/vulnerability/CVE-2024-2183,Stored Cross-Site Scripting in Beaver Builder Addons by WPZOOM for WordPress,"The Beaver Builder Addons by WPZOOM plugin for WordPress is susceptible to Stored Cross-Site Scripting through the Heading widget due to inadequate input sanitization and output escaping. This vulnerability allows authenticated attackers with contributor-level access or higher to inject malicious scripts into web pages, executing them whenever users visit the compromised pages. It is essential that users of this plugin update to the latest version to mitigate this risk.",Wordpress,Beaver Builder Addons By WPzoom,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:59:00.099Z,0
CVE-2024-2186,https://securityvulnerability.io/vulnerability/CVE-2024-2186,Stored Cross-Site Scripting in Beaver Builder Addons by WPZOOM Plugin,"The Beaver Builder Addons by WPZOOM plugin for WordPress suffers from a Stored Cross-Site Scripting vulnerability due to inadequate input sanitization and output escaping in the Team Members widget. This issue allows authenticated attackers with contributor-level privileges to inject arbitrary web scripts, which can be executed on pages accessed by users. It is crucial for website administrators to update to the latest version and apply measures to prevent unauthorized access to maintain site security.",Wordpress,Beaver Builder Addons By WPzoom,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:57.763Z,0
CVE-2024-2181,https://securityvulnerability.io/vulnerability/CVE-2024-2181,Stored Cross-Site Scripting Vulnerability in Beaver Builder Addons by WPZOOM,"The Beaver Builder Addons for WordPress developed by WPZOOM contains a Stored Cross-Site Scripting vulnerability that allows authenticated attackers with contributor-level access or higher to exploit the Button widget. This flaw is due to inadequate input sanitization and output escaping, enabling malicious scripts to be injected into pages. When a user visits an affected page, these malicious scripts will execute, potentially compromising user data and site integrity.",Wordpress,Beaver Builder Addons By WPzoom,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:53.569Z,0
CVE-2024-2185,https://securityvulnerability.io/vulnerability/CVE-2024-2185,Stored Cross-Site Scripting Vulnerability in Beaver Builder Addons,"The Beaver Builder Addons by WPZOOM plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Box widget in all versions up to, and including, 1.3.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Beaver Builder Addons By WPzoom,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:29.832Z,0
CVE-2024-2187,https://securityvulnerability.io/vulnerability/CVE-2024-2187,Stored Cross-Site Scripting Vulnerability in Beaver Builder Addons,"The Beaver Builder Addons by WPZOOM plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Testimonials widget in all versions up to, and including, 1.3.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Beaver Builder Addons By WPzoom,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:28.787Z,0