cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-24243,https://securityvulnerability.io/vulnerability/CVE-2021-24243,WPBakery Page Builder Clipboard < 4.5.6 - Subscriber+ Stored Cross-Site Scripting (XSS),"An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users (subscriber+) to call it and set XSS payloads, which will be triggered in all backend pages.",Wordpress,WPbakery Page Builder (visual Composer) Clipboard,5.4,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2021-05-06T13:15:00.000Z,0
CVE-2021-24244,https://securityvulnerability.io/vulnerability/CVE-2021-24244,WPBakery Page Builder Clipboard < 4.5.8 - Unauthorised Arbitrary License Options Update,"An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email).",Wordpress,WPbakery Page Builder (visual Composer) Clipboard,6.5,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2021-05-06T13:15:00.000Z,0