CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49823 – WordPress Bold Page Builder Plugin <= 4.6.1 is vulnerable to Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-49823
05 Dec 2023 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldThemes Bold Page Builder allows Stored XSS.This issue affects Bold Page Builder: from n/a through 4.6.1. La vulnerabilidad de neutralización inadecuada de la entrada durante la generación de páginas web ('cross-site Scripting') en BoldThemes Bold Page Builder permite almacenar XSS. Este problema afecta a Bold Page Builder: desde n/a hasta 4.6.1. The Bold Page Builder plugin for WordPress is vulnerable t... • https://patchstack.com/database/vulnerability/bold-page-builder/wordpress-bold-page-builder-plugin-4-6-1-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4828 – Bold Timeline Lite < 1.1.5 - Contributor+ Stored XSS via Shortcode
https://notcve.org/view.php?id=CVE-2022-4828
03 Jan 2023 — The Bold Timeline Lite WordPress plugin before 1.1.5 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. The Bold Timeline Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in versions up to, and including, 1.1.4 due to insufficient input san... • https://wpscan.com/vulnerability/06e1d63e-576b-4e16-beb7-4f0bfb85e948 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2089 – Bold Page Builder < 4.3.3 - Admin+ Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2022-2089
20 Jun 2022 — The Bold Page Builder WordPress plugin before 4.3.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed. El plugin Bold Page Builder de WordPress versiones anteriores a 4.3.3 no sanea y escapa de algunas de sus configuraciones, lo que podría permitir a los usuarios con altos privilegios, como los administradores, llevar a cabo ataques de Cross-Site Scripting incluso cuando unfi... • https://wpscan.com/vulnerability/9fe7e9d5-7bdf-4ade-9a3c-b4af863fa4e8 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-24820 – Cost Calculator <= 1.6 - Authenticated Local File Inclusion
https://notcve.org/view.php?id=CVE-2021-24820
01 Feb 2022 — The Cost Calculator WordPress plugin through 1.6 allows authenticated users (Contributor+ in versions < 1.5, and Admin+ in versions <= 1.6) to perform path traversal and local PHP file inclusion on Windows Web Servers via the Cost Calculator post's Layout El plugin de Cost Calculator de WordPress hasta la versión 1.6 permite a los usuarios autentificados (Contributor+ en las versiones anteriores a la versión 1.5, y Admin+ en las versiones anteriores o iguales a la versión 1.6) realizar el path traversal y l... • https://wpscan.com/vulnerability/47652b24-a6f0-4bbc-834e-496b88523fe7 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24579 – Bold Page Builder < 3.1.6 - PHP Object Injection
https://notcve.org/view.php?id=CVE-2021-24579
02 Aug 2021 — The bt_bb_get_grid AJAX action of the Bold Page Builder WordPress plugin before 3.1.6 passes user input into the unserialize() function without any validation or sanitisation, which could lead to a PHP Object Injection. Even though the plugin did not contain a suitable gadget to fully exploit the issue, other installed plugins on the blog could allow such issue to be exploited and lead to RCE in some cases. La acción bt_bb_get_grid AJAX del plugin de WordPress Bold Page Builder versiones anteriores a 3.1.6,... • https://wpscan.com/vulnerability/08edce3f-2746-4886-8439-76e44ec76fa8 • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 2CVE-2021-24319 – Bello < 1.6.0 - Authenticated Cross-Site Scripting (XSS) and XFS
https://notcve.org/view.php?id=CVE-2021-24319
16 May 2021 — The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise its post_excerpt parameter before outputting it back in the shop/my-account/bello-listing-endpoint/ page, leading to a Cross-Site Scripting issue El tema de WordPress Bello - Directory & Listing versiones anteriores a 1.6.0, no saneaba apropiadamente su parámetro post_excerpt antes de devolverlo a la página shop/my-account/bello-Listing-endpoint/page, lo conllevando un problema de tipo Cross-Site Scripting • https://m0ze.ru/vulnerability/%5B2021-03-21%5D-%5BWordPress%5D-%5BCWE-1021%5D-Bello-WordPress-Theme-v1.5.9.txt • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2021-24321 – Bello < 1.6.0 - Unauthenticated Blind SQL Injection
https://notcve.org/view.php?id=CVE-2021-24321
16 May 2021 — The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and bt_bb_listing_field_my_lat parameters before using them in a SQL statement, leading to SQL Injection issues El tema de WordPress Bello - Directory & Listing versiones anteriores a 1.6.0, no saneababa los parámetros bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, L... • https://m0ze.ru/vulnerability/%5B2021-03-21%5D-%5BWordPress%5D-%5BCWE-89%5D-Bello-WordPress-Theme-v1.5.9.txt • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2021-24320 – Bello < 1.6.0 - Unauthenticated Reflected XSS & XFS
https://notcve.org/view.php?id=CVE-2021-24320
21 Mar 2021 — The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise and escape its listing_list_view, bt_bb_listing_field_my_lat, bt_bb_listing_field_my_lng, bt_bb_listing_field_distance_value, bt_bb_listing_field_my_lat_default, bt_bb_listing_field_keyword, bt_bb_listing_field_location_autocomplete, bt_bb_listing_field_price_range_from and bt_bb_listing_field_price_range_to parameter in ints listing page, leading to reflected Cross-Site Scripting issues. El tema de WordPress Bello - Dire... • https://m0ze.ru/vulnerability/%5B2021-03-21%5D-%5BWordPress%5D-%5BCWE-79%5D-Bello-WordPress-Theme-v1.5.9.txt • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-15821 – Bold Page Builder <= 2.3.1 - Missing Authorization to Settings Update
https://notcve.org/view.php?id=CVE-2019-15821
23 Aug 2019 — The bold-page-builder plugin before 2.3.2 for WordPress has no protection against modifying settings and importing data. El plugin bold-page-builder anterior de la versión 2.3.2 para WordPress no tiene protección contra la modificación de configuraciones e importación de datos. • https://blog.nintechnet.com/critical-vulnerability-in-wordpress-bold-page-builder-plugin-currently-being-exploited • CWE-862: Missing Authorization •