Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 99 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability Brainstorm ForceUltimate Addons for WPBakery Page Builder Medium 6.5 2026-04-01 08:51:32 Deep Dive
CVE-2026-28038 WordPress Ultimate Addons for WPBakery Page Builder plugin <= 3.21.1 - Broken Access Control vulnerability Brainstorm_ForceUltimate Addons for WPBakery Page Builder Medium 6.5 2026-03-05 05:54:15 Deep Dive
CVE-2025-69390 WordPress Business Template Blocks for WPBakery (Visual Composer) Page Builder plugin <= 1.3.2 - Reflected Cross Site Scripting (XSS) vulnerability themebonBusiness Template Blocks for WPBakery (Visual Composer) Page Builder--2026-02-20 15:46:55 Deep Dive
CVE-2025-68531 WordPress ModelTheme Addons for WPBakery and Elementor plugin < 1.5.6 - PHP Object Injection vulnerability modelthemeModelTheme Addons for WPBakery and Elementor--2026-02-20 15:46:39 Deep Dive
CVE-2025-60087 WordPress Extensive VC Addons for WPBakery page builder plugin <= 1.9.1 - Local File Inclusion vulnerability Nenad ObradovicExtensive VC Addons for WPBakery page builder--2026-02-20 15:46:28 Deep Dive
CVE-2026-24594 WordPress Livemesh Addons for WPBakery Page Builder plugin <= 3.9.4 - Cross Site Scripting (XSS) vulnerability livemeshLivemesh Addons for WPBakery Page Builder Medium 5.9 2026-01-23 14:29:02 Deep Dive
CVE-2025-30631 WordPress Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) <= 1.2 - Cross Site Scripting (XSS) Vulnerability AA-TeamAmazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) High 7.1 2026-01-06 20:30:34 Deep Dive
CVE-2025-69360 WordPress TheGem Theme Elements (for WPBakery) plugin <= 5.11.0 - Cross Site Scripting (XSS) vulnerability CodexThemesTheGem Theme Elements (for WPBakery) 中危 -2026-01-06 16:36:42 Deep Dive
CVE-2025-30628 WordPress Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) plugin <= 1.2 - SQL Injection Vulnerability AA-TeamAmazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) High 8.5 2025-12-31 20:03:50 Deep Dive
CVE-2025-66145 WordPress Worker for WPBakery plugin <= 1.1.1 - Broken Access Control vulnerability merkuloveWorker for WPBakery Medium 5.4 2025-12-31 19:51:23 Deep Dive
CVE-2025-62748 WordPress Web and WooCommerce Addons for WPBakery Builder plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability Genetech ProductsWeb and WooCommerce Addons for WPBakery Builder Medium 6.5 2025-12-31 12:02:49 Deep Dive
CVE-2023-32238 WordPress TheGem theme < 5.8.1.1 - Broken Access Control vulnerability CodexThemesTheGem (Elementor) Medium 5.4 2025-12-29 23:18:55 Deep Dive
CVE-2025-68574 WordPress WPBakery Visual Composer WHMCS Elements plugin <= 1.0.4.3 - Cross Site Scripting (XSS) vulnerability voidcodersWPBakery Visual Composer WHMCS Elements Medium 5.9 2025-12-24 13:10:38 Deep Dive
CVE-2025-68532 WordPress ModelTheme Addons for WPBakery and Elementor plugin < 1.5.6 - Cross Site Scripting (XSS) vulnerability modelthemeModelTheme Addons for WPBakery and Elementor Medium 6.5 2025-12-24 12:31:26 Deep Dive
CVE-2025-14054 WC Builder <= 1.2.0 - Authenticated (Shop Manager+) Stored Cross-Site Scripting via 'heading_color' Shortcode Attribute hasthemesWC Builder – WooCommerce Page Builder for WPBakery Medium 4.4 2025-12-21 02:20:32 Deep Dive
CVE-2025-66165 WordPress Lottier for WPBakery plugin <= 1.1.7 - Broken Access Control vulnerability merkuloveLottier for WPBakery--2025-12-16 08:12:56 Deep Dive
CVE-2025-14475 Extensive VC Addons for WPBakery page builder <= 1.9.1 - Unauthenticated Local File Inclusion via 'shortcode_name' Parameter nenad-obradovicExtensive VC Addons for WPBakery page builder High 8.1 2025-12-13 04:31:25 Deep Dive
CVE-2025-14119 App Landing Template Blocks for WPBakery Page Builder <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes themebonApp Landing Template Blocks for WPBakery (Visual Composer) Page Builder Medium 6.4 2025-12-12 03:20:46 Deep Dive
CVE-2025-62046 WordPress TheGem Demo Import (for WPBakery) plugin <= 5.10.5 - Arbitrary Content Deletion vulnerability CodexThemesTheGem Demo Import (for WPBakery) Medium 6.5 2025-11-06 15:55:43 Deep Dive
CVE-2025-62045 WordPress TheGem Theme Elements (for WPBakery) plugin <= 5.10.5.1 - Local File Inclusion vulnerability CodexThemesTheGem Theme Elements (for WPBakery) High 8.1 2025-11-06 15:55:42 Deep Dive