Vulnerabilidades em Brainstorm Force
66 resultadosCVE-2026-39470HIGHWordPress WooCommerce Cart Abandonment Recovery plugin < 2.1.0 - Privilege Escalation vulnerabilityEPSS 0.4%CVE-2023-23730MEDIUMWordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Captcha Bypass VulnerabilityEPSS 0.4%CVE-2026-25316HIGHWordPress CartFlows plugin <= 2.1.19 - PHP Object Injection vulnerabilityEPSS 0.4%CVE-2024-3237MEDIUMConvertPlug <= 3.5.25 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options UpdateEPSS 0.4%CVE-2024-29768MEDIUMWordPress Astra theme <= 4.6.4 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2023-44151MEDIUMWordPress Pre-Publish Checklist plugin <= 1.1.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-41804HIGHWordPress Starter Templates Plugin <= 3.2.4 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.3%CVE-2023-36679HIGHWordPress Spectra plugin <= 2.6.6 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2023-41805MEDIUMBroken Access Control vulnerability in multiple Brainstorm Force pluginsEPSS 0.3%CVE-2025-48164HIGHWordPress SureDash <= 1.0.3 - Privilege Escalation VulnerabilityEPSS 0.3%CVE-2023-23738MEDIUMWordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Unauthenticated Email Spoofing VulnerabilityEPSS 0.3%CVE-2023-51397MEDIUMWordPress WP Remote Site Search Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2023-34370HIGHServer Side Request Forgery (SSRF) vulnerability in Starter Templates pluginsEPSS 0.3%CVE-2025-54685MEDIUMWordPress SureDash Plugin <= 1.1.0 - Sensitive Data Exposure VulnerabilityEPSS 0.3%CVE-2023-23882MEDIUMWordPress Ultimate Addons for Beaver Builder – Lite Plugin <= 1.5.5 is vulnerable to Broken Access ControlEPSS 0.3%CVE-2023-46211MEDIUMWordPress Ultimate Addons for WPBakery Page Builder Plugin <= 3.19.14 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-7590MEDIUMWordPress Spectra plugin<= 2.14.1 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-68497MEDIUMWordPress Astra Widgets plugin <= 1.2.16 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-56274MEDIUMWordPress Astra Widgets plugin <= 1.2.15 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2023-23735MEDIUMWordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Unauthenticated Email HTML Injection VulnerabilityEPSS 0.3%