Security vulnerabilities in Oxygen (1)


  • Client Control Remote Code Execution – Oxygen <= 4.8.1 – CVE-2024-31380

    Affected plugin Oxygen Builder Active installs Not available – Commercial Vulnerable version <= 4.8.1 Audited version 4.8.1 Fully patched version Not patched Recommended remediation See: Misc CVE CVE-2024-31380 (Patchstack link) Description The Oxygen page builder is vulnerable to remote code execution (RCE) in versions <= 4.8.1, which means that an attacker can run arbitrary code/system…