Known Vulnerabilities for products from Brizy
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Brizy".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-58594 | Not Provided | 2025-09-03 | 2026-04-01 | |
| CVE-2025-32198 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themefusecom Brizy briz... | Not Provided | 2025-04-10 | 2026-04-01 |
| CVE-2024-34814 | Cross-Site Request Forgery (CSRF) vulnerability in Unyson Unyson unyson.This issue affects Unyson: from n/a through <= 2.7.29... | Not Provided | 2024-05-14 | 2026-04-01 |
| CVE-2023-51396 | 5.4 - MEDIUM | 2023-12-29 | 2024-01-05 | |
| CVE-2023-2897 | The Brizy Page Builder plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.4.18. Th... | 5.3 - MEDIUM | 2023-06-09 | 2023-11-07 |
| CVE-2022-2219 | The Unyson WordPress plugin before 2.7.27 does not sanitise and escape a parameter before outputting it back in the page, lea... | 7.2 - HIGH | 2022-07-25 | 2022-07-29 |
| CVE-2022-2041 | The Brizy WordPress plugin before 2.4.2 does not sanitise and escape some element content, which could allow users with a rol... | 5.4 - MEDIUM | 2022-06-27 | 2022-07-06 |
| CVE-2022-2040 | The Brizy WordPress plugin before 2.4.2 does not sanitise and escape some element URL, which could allow users with a role as... | 5.4 - MEDIUM | 2022-06-27 | 2022-07-06 |
| CVE-2021-38346 | The Brizy Page Builder plugin <= 2.3.11 for WordPress allowed authenticated users to upload executable files to a location of... | 8.8 - HIGH | 2021-10-14 | 2022-07-05 |
| CVE-2021-38345 | The Brizy Page Builder plugin <= 2.3.11 for WordPress used an incorrect authorization check that allowed any logged-in user a... | 6.5 - MEDIUM | 2021-10-14 | 2022-10-27 |
| CVE-2021-38344 | The Brizy Page Builder plugin <= 2.3.11 for WordPress was vulnerable to stored XSS by lower-privileged users such as a subscr... | 5.4 - MEDIUM | 2021-10-14 | 2022-07-05 |
| CVE-2020-36714 | The Brizy plugin for WordPress is vulnerable to authorization bypass due to a incorrect capability check on the is_administra... | 8.1 - HIGH | 2023-10-20 | 2023-11-07 |