Skip to main content

Extensive Vc Addons For Wpbakery Page Builder

1 CVEs product

Monthly

CVE-2023-0159 HIGH POC THREAT This Week

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation WordPress PHP Extensive Vc Addons For Wpbakery Page Builder
NVD WPScan Exploit-DB
CVSS 3.1
7.5
EPSS
55.7%
EPSS 56% CVSS 7.5
HIGH POC THREAT This Week

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation WordPress PHP +1
NVD WPScan Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy