Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2021-25027
HistoryJan 03, 2022 - 12:49 p.m.

CVE-2021-25027 PowerPack Addons for Elementor < 2.6.2 - Reflected Cross-Site Scripting

2022-01-0312:49:16
CWE-79
WPScan
www.cve.org
4
reflected cross-site scripting
powerpack addons
elementor

EPSS

0.001

Percentile

33.4%

JSON

The PowerPack Addons for Elementor WordPress plugin before 2.6.2 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting issue

CNA Affected

[
  {
    "product": "PowerPack Addons for Elementor",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "2.6.2",
        "status": "affected",
        "version": "2.6.2",
        "versionType": "custom"
      }
    ]
  }
]

Related

cnvd 1
prion 1
nvd 1
cve 1
wpexploit 1
patchstack 1
wpvulndb 1
cnvd
cnvd
WordPress plugin PowerPack Addons for Elementor cross-site scripting vulnerability
2022-01-05 00:00:00
prion
prion
Cross site scripting
2022-01-03 13:15:00
nvd
nvd
CVE-2021-25027
2022-01-03 13:15:09
cve
cve
CVE-2021-25027
2022-01-03 13:15:09
wpexploit
wpexploit
PowerPack Addons for Elementor < 2.6.2 - Reflected Cross-Site Scripting
2021-12-06 00:00:00
patchstack
patchstack
WordPress PowerPack Addons for Elementor plugin <= 2.6.1 - Reflected Cross-Site Scripting (XSS) vulnerability
2021-12-06 00:00:00
wpvulndb
wpvulndb
PowerPack Addons for Elementor < 2.6.2 - Reflected Cross-Site Scripting
2021-12-06 00:00:00

EPSS

0.001

Percentile

33.4%

JSON
Related for CVELIST:CVE-2021-25027
cnvd1prion1nvd1cve1wpexploit1patchstack1wpvulndb1