Lucene search
WPScanCVELIST:CVE-2021-24256HistoryMay 05, 2021 - 6:28 p.m.
CVE-2021-24256 Elementor - Header, Footer & Blocks Template < 1.5.8 - Contributor+ Stored XSS
2021-05-0518:28:45
CWE-79
WPScan
www.cve.org
3
elementor
wordpress
plugin
stored xss
vulnerability
contributor
cross-site scripting
EPSS
0.001
Percentile
19.4%
The “Elementor – Header, Footer & Blocks Template” WordPress Plugin before 1.5.8 has two widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
CNA Affected
[
{
"product": "Elementor – Header, Footer & Blocks Template",
"vendor": "Unknown",
"versions": [
{
"lessThan": "1.5.8",
"status": "affected",
"version": "1.5.8",
"versionType": "custom"
}
]
}
]Related
openvas
openvas
cve
cve
CVE-2021-24256
2021-05-05 19:15:07
nvd
nvd
CVE-2021-24256
2021-05-05 19:15:07
prion
prion
Cross site scripting
2021-05-05 19:15:00
wpvulndb
wpvulndb