Ideabox Powerpack_for_beaver_builder
6 CVEs affecting Ideabox Powerpack_for_beaver_builder. Latest disclosed: 2024-12-17. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-43330 | High | 7.1 | 2024-08-18 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack for Beaver Builder all… |
CVE-2024-2289 | Medium | 6.4 | 2024-04-09 | The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link in multiple elements in all versions up to… |
CVE-2024-12239 | Medium | 6.1 | 2024-12-17 | The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the navigate parameter in all versions up to, an… |
CVE-2022-0176 | Medium | 6.1 | 2022-02-14 | The PowerPack Lite for Beaver Builder WordPress plugin before 1.2.9.3 does not sanitise and escape the tab parameter before outputting it back in an admin page… |
CVE-2024-37409 | Medium | 5.9 | 2024-07-22 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack Lite for Beaver Builder power… |
CVE-2024-37410 | Medium | 4.9 | 2024-07-09 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in IdeaBox Creations PowerPack Lite for B… |