SiteOrigin Widgets Bundle
Greg - SiteOrigin
Developer
1.71.0
Latest version
400,000
Installations
No date
Last updated
Vulnerability history
0 present
11 patched
0 Mitigation rules
- Missing Authorization to Authenticated (Subscriber+) Arbitrary Shortcode Execution vulnerability<= 1.70.418/02/2026
- Authenticated (Contributor+) Stored Cross-Site Scripting via `data-url` DOM Element Attribute vulnerability<= 1.68.524/06/2025
- Broken Access Control vulnerability<= 1.64.010/12/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting in Image Grid widget vulnerability<= 1.62.230/07/2024
- Authenticated Stored Cross-Site Scripting vulnerability<= 1.61.110/06/2024
- WordPress SiteOrigin Widgets Bundle plugin <= 1.60.0 - - Authenticated (Contributor+) Stored Cross-Site Scripting via 'siteorigin_widget' Shortcode vulnerability<= 1.60.022/05/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.58.704/03/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.58.213/02/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.58.313/02/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.58.130/01/2024
- Authenticated (Admin+) Local File Inclusion vulnerability<= 1.50.129/11/2023