Page Builder: Pagelayer – Drag and Drop website builder, CVE-2020-35944

CVE, Research URL: CVE-2020-35944
Home page URL: Security reports for Page Builder: Pagelayer – Drag and Drop website builder
Application: Page Builder: Pagelayer – Drag and Drop website builder
Published on: Jan 01, 2021
Research Description: An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. The pagelayer_settings_page function is vulnerable to CSRF, which can lead to XSS.
Affected versions: Min -, max 1.1.2.
Status: vulnerable

Page Builder: Pagelayer &#8211; Drag and Drop website builder, CVE-2020-35944