cleantalk
Vulnerabilities and Security Researches

Livemesh Addons for Beaver Builder, CVE-2026-2029

CVE, Research URL

CVE-2026-2029

Home page URL

Security reports for Livemesh Addons for Beaver Builder

Application

Livemesh Addons for Beaver Builder

Published on
Feb 26, 2026
Research Description
The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `[labb_pricing_item]` shortcode's `title` and `value` attributes in all versions up to, and including, 3.9.2 due to insufficient input sanitization and output escaping. Specifically, the plugin uses `htmlspecialchars_decode()` after `wp_kses_post()`, which decodes HTML entities back into executable code after sanitization has occurred. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 3.9.2.
Status
vulnerable
Previous vulnerability researches
Cart All In One For WooCommerce (CVE-2026-2019) , Apr 15, 2026
Cart All In One For WooCommerce (CVE-2022-46806) , Jun 07, 2024
New vulnerability
Purchase Button For Affiliate Link (CVE-2026-1073) , Apr 16, 2026
Nexi XPay (CVE-2025-15565) , Apr 16, 2026
imwptip (CVE-2026-1377) , Apr 16, 2026
Login with Azure (Azure SSO) (CVE-2026-2628) , Apr 16, 2026
QuestionPro Surveys (CVE-2026-1901) , Apr 16, 2026