Search criteria
3 vulnerabilities by wpbakery_page_builder_clipboard_project
CVE-2024-5265 (GCVE-0-2024-5265)
Vulnerability from cvelistv5 – Published: 2024-06-13 06:42 – Updated: 2024-08-01 21:11
VLAI?
Title
WPBakery Page Builder <= 7.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via VC Single Image link attribute
Summary
The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link attribute within the vc_single_image shortcode in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity ?
6.4 (Medium)
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| wpbakery | WPBakery Visual Composer |
Affected:
* , ≤ 7.6
(semver)
|
Credits
wesley
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-5265",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-19T18:28:42.533494Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-19T18:28:58.641Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:11:11.557Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/35a5114e-5c5f-4003-8bb3-77243ffbac1a?source=cve"
},
{
"tags": [
"x_transferred"
],
"url": "https://kb.wpbakery.com/docs/preface/release-notes/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "WPBakery Visual Composer",
"vendor": "wpbakery",
"versions": [
{
"lessThanOrEqual": "7.6",
"status": "affected",
"version": "*",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "wesley"
}
],
"descriptions": [
{
"lang": "en",
"value": "The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link attribute within the vc_single_image shortcode in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-13T06:42:51.823Z",
"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"shortName": "Wordfence"
},
"references": [
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/35a5114e-5c5f-4003-8bb3-77243ffbac1a?source=cve"
},
{
"url": "https://kb.wpbakery.com/docs/preface/release-notes/"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-06-12T18:40:01.000+00:00",
"value": "Disclosed"
}
],
"title": "WPBakery Page Builder \u003c= 7.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via VC Single Image link attribute"
}
},
"cveMetadata": {
"assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"assignerShortName": "Wordfence",
"cveId": "CVE-2024-5265",
"datePublished": "2024-06-13T06:42:51.823Z",
"dateReserved": "2024-05-23T11:05:42.916Z",
"dateUpdated": "2024-08-01T21:11:11.557Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-24244 (GCVE-0-2021-24244)
Vulnerability from cvelistv5 – Published: 2021-05-05 18:39 – Updated: 2024-08-03 19:21
VLAI?
Title
WPBakery Page Builder Clipboard < 4.5.8 - Unauthorised Arbitrary License Options Update
Summary
An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email).
Severity ?
No CVSS data available.
CWE
- CWE-863 - Incorrect Authorization
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| bitorbit | WPBakery Page Builder (Visual Composer) Clipboard |
Affected:
4.5.0 , < 4.5.0*
(custom)
Affected: 4.5.8 , < 4.5.8 (custom) |
Credits
Charles Strader Sweethill
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T19:21:18.915Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "WPBakery Page Builder (Visual Composer) Clipboard",
"vendor": "bitorbit",
"versions": [
{
"lessThan": "4.5.0*",
"status": "affected",
"version": "4.5.0",
"versionType": "custom"
},
{
"lessThan": "4.5.8",
"status": "affected",
"version": "4.5.8",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Charles Strader Sweethill"
}
],
"descriptions": [
{
"lang": "en",
"value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email)."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-863",
"description": "CWE-863 Incorrect Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-05-05T18:39:42",
"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"shortName": "WPScan"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "WPBakery Page Builder Clipboard \u003c 4.5.8 - Unauthorised Arbitrary License Options Update",
"x_generator": "WPScan CVE Generator",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "contact@wpscan.com",
"ID": "CVE-2021-24244",
"STATE": "PUBLIC",
"TITLE": "WPBakery Page Builder Clipboard \u003c 4.5.8 - Unauthorised Arbitrary License Options Update"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WPBakery Page Builder (Visual Composer) Clipboard",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_name": "4.5.0",
"version_value": "4.5.0"
},
{
"version_affected": "\u003c",
"version_name": "4.5.8",
"version_value": "4.5.8"
}
]
}
}
]
},
"vendor_name": "bitorbit"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Charles Strader Sweethill"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email)."
}
]
},
"generator": "WPScan CVE Generator",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-863 Incorrect Authorization"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://codecanyon.net/item/visual-composer-clipboard/8897711",
"refsource": "MISC",
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
},
{
"name": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9",
"refsource": "CONFIRM",
"url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"assignerShortName": "WPScan",
"cveId": "CVE-2021-24244",
"datePublished": "2021-05-05T18:39:42",
"dateReserved": "2021-01-14T00:00:00",
"dateUpdated": "2024-08-03T19:21:18.915Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-24243 (GCVE-0-2021-24243)
Vulnerability from cvelistv5 – Published: 2021-05-05 18:39 – Updated: 2024-08-03 19:21
VLAI?
Title
WPBakery Page Builder Clipboard < 4.5.6 - Subscriber+ Stored Cross-Site Scripting (XSS)
Summary
An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users (subscriber+) to call it and set XSS payloads, which will be triggered in all backend pages.
Severity ?
No CVSS data available.
CWE
- CWE-79 - Cross-site Scripting (XSS)
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| bitorbit | WPBakery Page Builder (Visual Composer) Clipboard |
Affected:
4.5.0 , < 4.5.0*
(custom)
Affected: 4.5.6 , < 4.5.6 (custom) |
Credits
Charles Strader Sweethill
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T19:21:18.708Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://wpscan.com/vulnerability/3bc0733a-b949-40c9-a5fb-f56814fc4af3"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "WPBakery Page Builder (Visual Composer) Clipboard",
"vendor": "bitorbit",
"versions": [
{
"lessThan": "4.5.0*",
"status": "affected",
"version": "4.5.0",
"versionType": "custom"
},
{
"lessThan": "4.5.6",
"status": "affected",
"version": "4.5.6",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Charles Strader Sweethill"
}
],
"descriptions": [
{
"lang": "en",
"value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users (subscriber+) to call it and set XSS payloads, which will be triggered in all backend pages."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79 Cross-site Scripting (XSS)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-05-05T18:39:42",
"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"shortName": "WPScan"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://wpscan.com/vulnerability/3bc0733a-b949-40c9-a5fb-f56814fc4af3"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "WPBakery Page Builder Clipboard \u003c 4.5.6 - Subscriber+ Stored Cross-Site Scripting (XSS)",
"x_generator": "WPScan CVE Generator",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "contact@wpscan.com",
"ID": "CVE-2021-24243",
"STATE": "PUBLIC",
"TITLE": "WPBakery Page Builder Clipboard \u003c 4.5.6 - Subscriber+ Stored Cross-Site Scripting (XSS)"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WPBakery Page Builder (Visual Composer) Clipboard",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_name": "4.5.0",
"version_value": "4.5.0"
},
{
"version_affected": "\u003c",
"version_name": "4.5.6",
"version_value": "4.5.6"
}
]
}
}
]
},
"vendor_name": "bitorbit"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Charles Strader Sweethill"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users (subscriber+) to call it and set XSS payloads, which will be triggered in all backend pages."
}
]
},
"generator": "WPScan CVE Generator",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79 Cross-site Scripting (XSS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://wpscan.com/vulnerability/3bc0733a-b949-40c9-a5fb-f56814fc4af3",
"refsource": "CONFIRM",
"url": "https://wpscan.com/vulnerability/3bc0733a-b949-40c9-a5fb-f56814fc4af3"
},
{
"name": "https://codecanyon.net/item/visual-composer-clipboard/8897711",
"refsource": "MISC",
"url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"assignerShortName": "WPScan",
"cveId": "CVE-2021-24243",
"datePublished": "2021-05-05T18:39:42",
"dateReserved": "2021-01-14T00:00:00",
"dateUpdated": "2024-08-03T19:21:18.708Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}