Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Beaver Builder – WordPress Page Builder 2.7.4.4

  • Severity: medium-risk
  • Status: Fixed
  • Publication: March 11, 2024

The Beaver Builder is a WordPress plugin that helps users create pages for their website. However, it has a security vulnerability called Stored Cross-Site Scripting, which allows attackers to inject harmful code into pages. This can happen if the attacker has contributor access or higher. This issue has been identified in all versions up to 2.7.4.4.

Detected in:

Beaver Builder – WordPress Page Builder fixed vulnerable versions: >= * <= 2.7.4.4
Beaver Builder Page Builder – Drag and Drop Website Builder fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.