Browse all 15 CVE security advisories affecting wpbakery. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WPBakery serves as a popular WordPress page builder plugin enabling drag-and-drop website design. Historically, it has been susceptible to multiple security vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation, contributing to its 15 recorded CVEs. These issues often stem from insufficient input validation and improper access controls. While no single major incident stands out, the cumulative impact of these vulnerabilities has made WPBakery a frequent target in WordPress security landscapes. Regular updates and proper configuration remain critical for mitigating risks associated with this widely used tool.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-54747 | WordPress Templatera Plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability — TemplateraCWE-79 | 6.5 | Medium | 2025-08-14 |
This page lists every published CVE security advisory associated with wpbakery. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.