Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Onepage Builder – Easiest Landing Page Builder For WordPress 2.4.1

  • Severity: high-risk
  • Status: Open
  • Publication: July 20, 2023

The Onepage Builder – Easiest Landing Page Builder For WordPress plugin is vulnerable to a type of attack called SQL Injection. This is an issue in versions 2.4.1 and earlier. An attacker with administrator-level access or higher can use this vulnerability to gain access to sensitive information stored in the database. This is done by adding additional SQL queries into existing queries.

Detected in:

Onepage Builder – Easiest Landing Page Builder For WordPress open vulnerable versions: >= * <= 2.4.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.