Brizy < 2.3.12 – Authenticated Stored Cross-Site Scripting | CVE 2021-38344 | Plugin Vulnerabilities

Description

While the Brizy – Page Builder plugin does not offer a direct way for lower-privileged users such as contributors to add JavaScript to page content, it was possible for a lower-privileged user to modify a request sent to update a page via the brizy_update_item AJAX action by adding JavaScript to the data parameter. The added JavaScript would then be be executed if the post was viewed or previewed by another user, such as an administrator.

Thanks to a separate authorization check vulnerability, even the lowest-privileged users, such as subscribers, could add malicious JavaScript to any page

Affects Plugins

Fixed in 2.3.12

References

CVE

URL

https://www.wordfence.com/blog/2021/10/multiple-vulnerabilities-in-brizy-page-builder-plugin-allow-site-takeover/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Ramuel Gall

Submitter

Ramuel Gall

Submitter twitter

Verified

Yes

WPVDB ID

e02cf584-0b7e-44c0-b209-8752e25c33fd

Timeline

Publicly Published

2021-10-13 (about 4 years ago)

Added

2021-10-13 (about 4 years ago)

Last Updated

2022-04-15 (about 4 years ago)

Other

Published

Title

Published

2025-08-20

Title

WP Visitor Statistics (Real Time Traffic) < 8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2017-04-14

Title

Enhanced Plugin Admin <= 1.15 - XSS

Published

2023-05-16

Title

Chaty < 3.1 - Reflected XSS

Published

2025-03-24

Title

Include URL <= 0.3.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2024-11-08

Title

Custom Dashboard Widget <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting