Lucene search
HistorySep 17, 2024 - 11:15 p.m.
CVE-2024-43977
cve-2024-43977
posimyth
elementor page builder lite
stored xss
web page generation
vulnerability
cross-site scripting
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.7%
Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows Stored XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.2.
Affected configurations
Node
posimyththe_plus_addons_for_elementorRange<5.6.3freewordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| posimyth | the_plus_addons_for_elementor | * | cpe:2.3:a:posimyth:the_plus_addons_for_elementor:*:*:*:*:free:wordpress:*:* |
Related
cve
cve
CVE-2024-43977
2024-09-17 23:15:18
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.7%
Related for NVD:CVE-2024-43977