Ideabox Powerpack For Beaver Builder — known CVE vulnerabilities
Every CVE whose affected-product data names Ideabox Powerpack For Beaver Builder, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-43330 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack…
CVE-2024-2289 — CVSS 6.4 (medium): The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link in multiple elements…
CVE-2022-0176 — CVSS 6.1 (medium): The PowerPack Lite for Beaver Builder WordPress plugin before 1.2.9.3 does not sanitise and escape the tab parameter before outputting it…
CVE-2024-12239 — CVSS 6.1 (medium): The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the navigate parameter in…
CVE-2024-37409 — CVSS 5.9 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack Lite for…
CVE-2024-37410 — CVSS 4.9 (medium): Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in IdeaBox Creations…