Security Intel Hub 2+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

Sort: Latest
Sort: Premium

Medium

Avada Fusion Builder <=3.15.1 Authenticated Arbitrary WordPress Action Execution (CVE-2026-1541)

CVE-2026-1541 · www.wordfence.com · 2026-04-19

Avada (Fusion) Builder <= 3.15.1

CVSS 6.4

CVE-2024-5628: Avada WordPress Plugin Contributor Stored XSS via fusion_button Shortcode

www.wordfence.com · 2024-09-14

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Avada | Website Builder For WordPress & eCommerce <= 3.11.9 - Authentica…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 2+

Avada Fusion Builder <=3.15.1 Authenticated Arbitrary WordPress Action Execution (CVE-2026-1541)

CVE-2024-5628: Avada WordPress Plugin Contributor Stored XSS via fusion_button Shortcode