Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beaver Builder Beaver Builder beaver-builder-lite-version allows Blind SQL Injection.This issue affects Beaver Builder: from n/a through <= 2.10.1.2.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Wordpress |
|
| Wpbeaverbuilder |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
| Wordpress |
|
| Wpbeaverbuilder |
|
References
History
Wed, 15 Apr 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wordpress
Wordpress wordpress Wpbeaverbuilder Wpbeaverbuilder beaver Builder |
|
| Vendors & Products |
Wordpress
Wordpress wordpress Wpbeaverbuilder Wpbeaverbuilder beaver Builder |
Wed, 15 Apr 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beaver Builder Beaver Builder beaver-builder-lite-version allows Blind SQL Injection.This issue affects Beaver Builder: from n/a through <= 2.10.1.2. | |
| Title | WordPress Beaver Builder plugin <= 2.10.1.2 - SQL Injection vulnerability | |
| Weaknesses | CWE-89 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-04-15T10:21:34.729Z
Reserved: 2026-04-15T09:19:38.194Z
Link: CVE-2026-40744
Vulnrichment
No data.
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-15T13:44:58Z