Bold Page Builder

Vulnerabilities 35Slug bold-page-builderLatest version 5.7.3WordPress.org →

Minimum safe version

5.7.0

Update to 5.7.0 or later to address 31 fixable vulnerabilities

Latest available5.7.3 ✓⚠ 4 vulnerabilities have no fix

Medium 6.4

2025-10-23< 5.4.6

Bold Page Builder <= 5.4.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via `percentage` Parameter

Wordfence EUVD CVE

Medium 6.5

2026-02-19< 5.7.0

CVE-2026-25451

CVE Wordfence

Medium 6.4 Unfixed

2026-02-07≤ 5.4.8

Bold Page Builder <= 5.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

CVE EUVD Wordfence

Medium 6.4 Unfixed

2026-02-07≤ 5.5.1

Bold Builder <= 5.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_tabs Shortcode

CVE EUVD Wordfence

Medium 6.4 Unfixed

2026-02-07≤ 5.5.3

Bold Page Builder <= 5.5.3 - Authenticated (Author+) Stored DOM-based Cross-Site Scripting in Post Grid

CVE EUVD Wordfence

Medium 6.4 Unfixed

2026-02-07≤ 5.5.7

Bold Page Builder <= 5.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_accordion_item Shortcode

CVE EUVD Wordfence

Medium 6.5

2025-11-27< 5.5.3

Bold Page Builder <= 5.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

Wordfence CVE

Medium 6.5

2025-08-27< 5.4.4

CVE-2025-58194

CVE Wordfence EUVD

Medium 6.5

2025-07-16< 5.4.2

CVE-2025-54006

CVE Wordfence EUVD

Medium 6.4

2025-07-03< 5.1.3

Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library

EUVD Wordfence WPScan CVE

Medium 6.4

2025-05-28< 5.3.7

Bold Builder <= 5.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via additional_settings Parameter

Wordfence CVE

Medium 6.4

2025-05-18< 5.3.6

Bold Page Builder <= 5.3.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'data-text' Parameter

EUVD Wordfence CVE

Medium 5.9

2025-05-07< 5.3.1

CVE-2025-47525

CVE EUVD Wordfence

Medium 6.5

2025-05-07< 5.3.3

CVE-2025-47488

CVE EUVD Wordfence

Medium 4.9

2024-12-16< 5.1.6

CVE-2024-54382

CVE Wordfence

Medium 6.5

2024-12-06< 5.2.2

CVE-2024-53801

CVE Wordfence Patchstack

Medium 4.3

2024-11-19< 5.1.4

CVE-2024-50417

CVE Patchstack Wordfence

Medium 6.5

2024-10-05< 5.1.1

CVE-2024-47391

CVE Patchstack Wordfence

Medium 6.5

2024-10-06< 5.1.2

CVE-2024-47298

CVE Patchstack Wordfence

Medium 5.4

2024-07-30< 5.0.3

CVE-2024-7100

CVE Patchstack Wordfence

Medium 5.4

2024-04-10< 4.8.9

CVE-2024-2736

CVE Wordfence Patchstack

Medium 5.4

2024-04-10< 4.8.9

CVE-2024-2734

CVE Wordfence Patchstack

Medium 5.4

2024-04-10< 4.8.9

CVE-2024-2735

CVE Wordfence Patchstack

Medium 5.4

2024-04-10< 4.8.9

CVE-2024-2733

CVE Wordfence Patchstack

Medium 5.4

2024-04-09< 4.8.9

CVE-2024-3267

CVE Wordfence Patchstack

Medium 5.4

2024-04-09< 4.8.9

CVE-2024-3266

CVE Wordfence

Medium 6.5

2024-03-29< 4.8.1

CVE-2024-30442

CVE Patchstack

Medium 6.5

2024-03-27< 4.7.7

CVE-2024-30179

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-13< 4.8.1

CVE-2024-1157

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-13< 4.8.1

CVE-2024-1160

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-13< 4.8.1

CVE-2024-1159

CVE Wordfence Patchstack WPScan

Medium 6.5

2023-12-15< 4.7.0

CVE-2023-49823

CVE Patchstack Wordfence WPScan

Medium 4.8

2022-07-11< 4.3.3

CVE-2022-2089

CVE Patchstack Wordfence WPScan

High 7.5

2019-08-30< 2.3.2

CVE-2019-15821

CVE Wordfence WPScan

High 8.8

2021-08-30< 3.1.6

CVE-2021-24579

CVE Patchstack Wordfence WPScan