Unrated severityNVD Advisory· Published Jun 19, 2023· Updated Dec 12, 2024

Responsive Tabs For WPBakery Page Builder <= 1.1 - Contributor+ Stored XSS

CVE-2023-0368

Description

The Responsive Tabs For WPBakery Page Builder (formerly Visual Composer) WordPress plugin through 1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/Responsive Tabs For WPBakery Page Builderdescription
WordPress/Responsive Tabs For WPBakery Page Builderllm-create
Range: <=1.1

Patches

Vulnerability mechanics

References

wpscan.com/vulnerability/b41e5c09-1034-48a7-ac0f-d4db6e7a3b3emitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000