Lucene search

CVE-2024-6340

🗓️ 03 Jul 2024 08:10:15Reported by WordfenceType

Vulnerability in Premium Addons for Elementor plugin

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Vulnrichment	CVE-2024-6340 Premium Addons for Elementor <= 4.10.35 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget	3 Jul 202407:32	–	vulnrichment
Patchstack	WordPress Premium Addons for Elementor Plugin <= 4.10.35 is vulnerable to Cross Site Scripting (XSS)	3 Jul 202400:00	–	patchstack
Cvelist	CVE-2024-6340 Premium Addons for Elementor <= 4.10.35 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget	3 Jul 202407:32	–	cvelist
NVD	CVE-2024-6340	3 Jul 202408:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 1, 2024 to July 7, 2024)	11 Jul 202415:09	–	wordfence

Nvd

Vulners

Vulnrichment

Node

leap13 premium_addons_for_elementorRange<4.10.36wordpress

[
  {
    "vendor": "leap13",
    "product": "Premium Addons for Elementor",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "4.10.35",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/premium-addons-for-elementor/trunk/assets/frontend/js/premium-countdown-timer.js
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/9ed80507-f3e5-45a8-9498-8cebf97155ff
plugins	www.plugins.trac.wordpress.org/browser/premium-addons-for-elementor/trunk/assets/frontend/js/premium-countdown-timer.js
wordpress	www.wordpress.org/plugins/premium-addons-for-elementor/
plugins	www.plugins.trac.wordpress.org/changeset/3111117/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jul 2024 08:15Current

5.5Medium risk

Vulners AI Score5.5

CVSS35.4 - 6.4

EPSS0.00085

SSVC

CWE-79