Vulnerabilities in The Beaver Builder Team
6 resultsCVE-2022-36425MEDIUMWordPress Beaver Builder plugin <= 2.5.4.3 - Broken Access Control vulnerabilityEPSS 0.7%CVE-2025-4102HIGHBeaver Builder Plugin (Starter Version) <= 2.9.1 - Authenticated (Administrator+) Arbitrary File UploadEPSS 0.5%CVE-2024-43926HIGHWordPress Beaver Builder plugin <= 2.8.3.2 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2023-50889MEDIUMWordPress Beaver Builder Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-37500MEDIUMWordPress Beaver Builder plugin <= 2.8.2.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-8427MEDIUMBeaver Builder Plugin (Starter Version) <= 2.9.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'auto_play'EPSS 0.2%