Lucene search

CVE-2024-3887

🗓️ 16 May 2024 09:15:15Reported by [email protected]Type

The Royal Elementor plugin for WordPress has Stored Cross-Site Scripting vulnerabilit

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Patchstack	WordPress Royal Elementor Addons Plugin <= 1.3.974 is vulnerable to Cross Site Scripting (XSS)	16 May 202400:00	–	patchstack
Vulnrichment	CVE-2024-3887 Royal Elementor Addons and Templates <= 1.3.974 - Authenticated (Contributor+) Stored Cross-Site Scripting via Form Builder Widget	16 May 202408:32	–	vulnrichment
CVE	CVE-2024-3887	16 May 202409:15	–	cve
WPVulnDB	Royal Elementor Addons and Templates < 1.3.975 - Authenticated (Contributor+) Stored Cross-Site Scripting via Form Builder Widget	17 May 202400:00	–	wpvulndb
Cvelist	CVE-2024-3887 Royal Elementor Addons and Templates <= 1.3.974 - Authenticated (Contributor+) Stored Cross-Site Scripting via Form Builder Widget	16 May 202408:32	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 13, 2024 to May 19, 2024)	23 May 202415:00	–	wordfence

Nvd

Node

royal-elementor-addons royal_elementor_addonsRange<1.3.975wordpress

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/5122800d-f274-4129-84d4-02380269502c
plugins	www.plugins.trac.wordpress.org/changeset

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 May 2024 09:15Current

5.3Medium risk

Vulners AI Score5.3

CVSS35.4

EPSS0.00064

CWE-79