Colibri Page Builder

Extend Themes

Developer

1.0.357

Latest version

100,000

Installations

Nov 25, 2025

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

15 fixed

2 Mitigation rules

Authenticated (Contributor+) Stored Cross-Site Scripting via colibri_newsletter Shortcode vulnerability
<= 1.0.334
Oct 13, 2025
Cross Site Scripting (XSS) Vulnerability
< 1.0.334
Sep 22, 2025
Cross Site Scripting (XSS) vulnerability
<= 1.0.329
Apr 4, 2025
Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library
<= 1.0.286
Dec 3, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
<= 1.0.276
Jun 6, 2024
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
<= 1.0.262
Apr 23, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via 'colibri-gallery-slideshow' Shortcode vulnerability
<= 1.0.272
Apr 23, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 1.0.263
Apr 2, 2024
Broken Access Control vulnerability
<= 1.0.248
Mar 26, 2024
Missing Authorization vulnerability
<= 1.0.260
Mar 11, 2024
Cross-Site Request Fogery via cp_shortcode_refresh vulnerability
<= 1.0.253
Feb 23, 2024
Cross-Site Request Fogery via extend_builder vulnerability
<= 1.0.253
Feb 23, 2024
Auth. Stored Cross-Site Scripting vulnerability
<= 1.0.239
Dec 27, 2023
Cross Site Scripting (XSS) vulnerability
<= 1.0.246
Dec 19, 2023
Auth. SQL Injection (SQLi) vulnerability
<= 1.0.227
Jun 22, 2023