Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 18/02/2025 Updated: 21/02/2025

Stored XSS Vulnerability in Simple Pricing Tables for WPBakery Page Builder Plugin

The Simple Pricing Tables For WPBakery Page Builder WordPress plugin has a Stored Cross Site Scripting (XSS) vulnerability in the 'wdo_simple_pricing_table_free' shortcode. Versions up to and including 1.0 are affected due to poor input sanitization and output escaping on user-supplied attributes. Authenticated attackers with contributor-level access or higher can inject malicious web scripts into pages. These injected scripts will automatically execute when other users access the compromised pages.

Vulnerable Product	Search on Vulmon	Subscribe to Product
labibahmed42 simple pricing tables for wpbakery page builder(formerly visual composer)
webdevocean pricing tables

CWE-79 https://nvd.nist.gov https://www.first.org/epss https://plugins.trac.wordpress.org/browser/simple-pricing-tables-vc-extension/tags/1.0/plugin.class.php#L403 https://www.wordfence.com/threat-intel/vulnerabilities/id/d94cd171-c2a4-4ef0-bc9a-5fdd2b704b5b?source=cve

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-13582

Vulnerability Summary

References

Vulmon Search

About

Products

Connect