SB2022090229 - Multiple vulnerabilities in Beaver Builder – WordPress Page Builder plugin

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Stored cross-site scripting (CVE-ID: CVE-2022-2934)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the "Image URL" value in the Media block. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

2) Stored cross-site scripting (CVE-ID: CVE-2022-2517)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the "Caption – On Hover" value associated with images. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

3) Stored cross-site scripting (CVE-ID: CVE-2022-2695)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the "caption" parameter added to images via the media uploader. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

4) Stored cross-site scripting (CVE-ID: CVE-2022-2716)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the "Text Editor" block. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Remediation

Install update from vendor's website.

References

• https://www.fortiguard.com/zeroday/FG-VD-20-080
• https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2934
• https://www.fortiguard.com/zeroday/FG-VD-20-076
• https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2716
• https://www.fortiguard.com/zeroday/FG-VD-20-077
• https://www.fortiguard.com/zeroday/FG-VD-20-079