Page Builder: Pagelayer – Drag and Drop website builder, CVE-2020-35944
- CVE, Research URL
- Published on
- Jan 01, 2021
- Research Description
- An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. The pagelayer_settings_page function is vulnerable to CSRF, which can lead to XSS.
- Affected versions
-
max 1.1.2.
- Status
-
vulnerable