Primary

Context

Classic Addons WPBakery Page Builder Local File Inclusion Vulnerability

Vulnerability

A path traversal vulnerability allowing PHP local file inclusion has been identified in the Classic Addons WPBakery Page Builder plugin, affecting versions through 3.0. This vulnerability could enable the inclusion of local files from the target website, potentially exposing sensitive information such as database credentials, which could lead to a complete database takeover depending on the configuration.

Impact

Exploitation of this vulnerability could allow a malicious actor to include local files from the server, such as those containing database credentials, and execute them, potentially leading to a database takeover.

Remediation

Users of the Classic Addons WPBakery Page Builder plugin should update to version 3.1 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Classic Addons WPBakery Page Builder Local File Inclusion Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating