Known Vulnerabilities for products from Bold-themes

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Bold-themes".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2024-54382 json Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in boldthemes Bold Page Builder ... Not Provided 2024-12-16 2026-04-23
CVE-2024-53801 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in boldthemes Bold Page Bu... Not Provided 2024-12-06 2026-04-23
CVE-2024-50417 json Missing Authorization vulnerability in boldthemes Bold Page Builder bold-page-builder allows Exploiting Incorrectly Configure... Not Provided 2024-11-19 2026-04-23
CVE-2024-47391 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in boldthemes Bold Page Bu... Not Provided 2024-10-05 2026-04-23
CVE-2024-47298 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in boldthemes Bold Page Bu... Not Provided 2024-10-06 2026-04-23
CVE-2024-30442 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldThemes Bold Page Bu... Not Provided 2024-03-29 2026-04-28
CVE-2024-30179 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldThemes Bold Page Bu... Not Provided 2024-03-27 2026-04-28
CVE-2024-3267 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bt_bb_price_list sho... Not Provided 2024-04-09 2026-04-08
CVE-2024-3266 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the URL attribute of widgets in a... Not Provided 2024-04-09 2026-04-08
CVE-2024-2736 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via HTML Tags in all versions up to, ... Not Provided 2024-04-10 2026-04-08
CVE-2024-2735 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Price List' element in all v... Not Provided 2024-04-10 2026-04-08
CVE-2024-2734 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's AI features all vers... Not Provided 2024-04-10 2026-04-08
CVE-2024-2733 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's "Separator" element ... Not Provided 2024-04-10 2026-04-08
CVE-2024-1160 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Icon Link in all ver... Not Provided 2024-02-13 2026-04-08
CVE-2024-1159 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all ... Not Provided 2024-02-13 2026-04-08
CVE-2024-1157 json The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button URL in all ve... Not Provided 2024-02-13 2026-04-08
CVE-2023-49823 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldThemes Bold Page Bu... Not Provided 2023-12-15 2026-04-28
CVE-2022-4828 json The Bold Timeline Lite WordPress plugin before 1.1.5 does not validate and escape some of its shortcode attributes before out... 5.4 - MEDIUM 2023-01-30 2023-11-07
CVE-2022-2089 json The Bold Page Builder WordPress plugin before 4.3.3 does not sanitise and escape some of its settings, which could allow high... 4.8 - MEDIUM 2022-07-11 2022-07-15
CVE-2021-24820 json ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 6.5 - MEDIUM 2022-02-28 2022-03-07
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Bold-themes

Type Vendor Product Version
ApplicationBold-themesBold Page Builder-
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report