VYPR
Unrated severityNVD Advisory· Published Oct 16, 2023· Updated Apr 23, 2025

PageLayer < 1.7.7 - Unauthenticated Stored XSS

CVE-2023-4687

Description

The Page Builder: Pagelayer WordPress plugin before 1.7.7 doesn't prevent unauthenticated attackers from updating a post's header or footer code on scheduled posts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.