S4E

CVE-2021-25067 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in Landing Page Builder plugin for WordPress affects v. before 1.4.9.6.

Short Info


Level

Medium

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

29 days

Scan only one

Domain, IPv4

Toolbox

-

The Landing Page Builder plugin for WordPress is a software tool that is used to create visually stunning landing pages for websites. With the help of this plugin, users can easily create and customize landing pages to attract visitors, promote products or services, and generate leads. The plugin has a user-friendly interface and a variety of templates and design elements that make the landing page creation process easy and efficient.

The CVE-2021-25067 vulnerability detected in the Landing Page Builder plugin is a reflected XSS that affects the page-builder-add on the ulpb_post admin page. This vulnerability allows an attacker to inject and execute malicious code into the victim's web browser by manipulating user input. It can be triggered when a user clicks on a specially crafted link or visits a page containing the malicious code.

When exploited, this vulnerability can lead to several negative consequences for website owners and their visitors. An attacker can steal sensitive information like usernames, passwords, and credit card details, install malware on the victim's system, or hijack the victim's web sessions. This can result in financial loss, reputation damage, and legal liabilities for the affected parties.

In conclusion, pro features of the s4e.io platform can help website owners and IT professionals to stay informed about vulnerabilities in their digital assets easily and quickly. By using these features, users can receive alerts about new vulnerabilities, assess their impact on their assets, and take appropriate actions to protect themselves against cyber threats. It is essential to stay vigilant and proactive in securing your digital assets to prevent cyber attacks and maintain business continuity.

 

REFERENCES

Get started to protecting your Free Full Security Scan