WPBakery Page Builder < 6.4.1 – Authenticated Stored Cross-Site Scripting (XSS)

  • ← Back to discussions
    Resolved
    Posted in: Freelo WP  

  • Member
    filoxenia
    November 13, 2020 at 9:11 am #17670

    Hi there,

    Wordfence discovered an Authenticated Stored Cross-Site Scripting (XSS) security vulnerability within the WPBakery Page Builder WordPress plugin.

    The vulnerability could allow a low privileged user, such as contributor, to inject malicious JavaScript into posts.

    When could you provide an update please?

    Best,
    filoxenia

    Sorry, this forum is for verified users only. Please Login / Register to continue
    or get 6 months support forum access to all forum topics for a reduced price.

Comments are closed.