Lucene search

CVE-2024-3925

🗓️ 12 Jun 2024 08:50:15Reported by [email protected]Type

The Element Pack plugin for WordPress is vulnerable to stored Cross-Site Scriptin

Reporter	Title	Published	Views	Family All 6
Vulnrichment	CVE-2024-3925 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via onclick events	12 Jun 202407:32	–	vulnrichment
Cvelist	CVE-2024-3925 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via onclick events	12 Jun 202407:32	–	cvelist
WPVulnDB	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via onclick events	11 Jun 202400:00	–	wpvulndb
Patchstack	WordPress Element Pack Elementor Addons Plugin <= 5.6.11 is vulnerable to Cross Site Scripting (XSS)	11 Jun 202400:00	–	patchstack
CVE	CVE-2024-3925	12 Jun 202408:15	–	cve
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 10, 2024 to June 16, 2024)	20 Jun 202413:40	–	wordfence

Nvd

Node

bdthemes element_packRange<5.6.12litewordpress

Source	Link
wordpress	www.wordpress.org/plugins/bdthemes-element-pack-lite/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/263dd246-32ed-4efc-b7a6-ee6c9d305f89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jun 2024 08:15Current

CVSS35.4

EPSS0.00045

CWE-79