CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7292 matches found

CVE•added 2024/11/01 2:17 p.m.•67 views

CVE-2024-43932

CVE-2024-43932 is a Missing Authorization vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite. The issue arises from incorrectly configured access control security levels, allowing unauthorized actions. Affected: The Plus Addons for Elementor Page Builder Lite up to version ...

8.8CVSS5.9AI score0.00561EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/01 1:4 p.m.•6 views

WordPress Cresta Addons for Elementor plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Cresta Addons for Elementor versions = 1.0.9...

6.5CVSS5.8AI score0.00233EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 12:58 p.m.•5 views

WordPress aThemes Addons for Elementor plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin aThemes Addons for Elementor versions = 1.0.7...

6.5CVSS6.1AI score0.00239EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 12:46 p.m.•4 views

WordPress Sastra Essential Addons for Elementor plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin Sastra Essential Addons for Elementor versions = 1.0.5...

6.5CVSS6.1AI score0.00243EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 11:43 a.m.•4 views

WordPress Magical Addons For Elementor plugin <= 1.2.1 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.2.1...

4.9CVSS7.1AI score0.0054EPSS

Exploits0Affected Software1

Positive Technologies•added 2024/11/01 12:0 a.m.•4 views

PT-2024-32964 · Elementor · Happy Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Happy Addons for Elementor versions 3.12.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. This enables unauthorized acces...

8.8CVSS6.5AI score0.00355EPSS

Exploits0References6

CNNVD•added 2024/11/01 12:0 a.m.•3 views

WordPress plugin Happy Addons for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.6AI score0.00355EPSS

Exploits0References1

Patchstack•added 2024/11/01 12:0 a.m.•11 views

WordPress Sastra Essential Addons for Elementor Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Sastra Essential Addons for Elementor Type Plugin Vulnerable versions = 1.0.5 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51674 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d931d481860a Credits Khalid Yusuf...

6.5CVSS6.9AI score0.00243EPSS

Exploits0References2Affected Software1

CNNVD•added 2024/11/01 12:0 a.m.•3 views

WordPress plugin The Plus Addons for Elementor Page Builder Lite 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in WordPress plugin The...

8.8CVSS6.4AI score0.00561EPSS

Exploits0References1

Positive Technologies•added 2024/11/01 12:0 a.m.•4 views

PT-2024-16177 · Elementor · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: Element Pack Elementor Addons versions up to, and including, 5.10.1 Description: The vulnerability is a Stored Cross-Site Scripting issue due to insufficient input sanitization and output escaping in the Custom Gallery Widget image title...

6.4CVSS6.2AI score0.00244EPSS

Exploits0References12

Patchstack•added 2024/11/01 12:0 a.m.•14 views

WordPress aThemes Addons for Elementor Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software aThemes Addons for Elementor Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51675 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8c1a41b721e0 Credits Khalid Yusuf Required...

6.5CVSS6.9AI score0.00239EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•9 views

WordPress Cresta Addons for Elementor Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Cresta Addons for Elementor Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51680 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e2f8a7fae053 Credits Gab Required privilege...

6.5CVSS6.7AI score0.00233EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2024/11/01 12:0 a.m.•6 views

PT-2024-30793 · Unknown · The Plus Addons For Elementor Page Builder

Name of the Vulnerable Software and Affected Versions: The Plus Addons for Elementor Page Builder Lite versions 5.6.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploitation of incorrectly configured access control security levels...

8.8CVSS6.5AI score0.00561EPSS

Exploits0References4

CNNVD•added 2024/11/01 12:0 a.m.•7 views

WordPress plugin Elements kit Elementor addons 安全漏洞

5.3CVSS6.6AI score0.0035EPSS

Exploits0References1

Patchstack•added 2024/10/31 1:1 p.m.•2 views

WordPress Hoo Addons for Elementor plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Hoo Addons for Elementor versions = 1.0.6...

6.5CVSS6.1AI score0.00234EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/31 12:41 p.m.•4 views

WordPress Definitive Addons for Elementor plugin <= 1.5.16 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Definitive Addons for Elementor versions = 1.5.16...

6.5CVSS5.8AI score0.00234EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/31 12:39 p.m.•5 views

WordPress Elementary Addons plugin <= 2.0.4 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Elementary Addons versions = 2.0.4...

6.5CVSS5.8AI score0.00234EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/31 12:5 p.m.•3 views

WordPress Clever Addons for Elementor plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Clever Addons for Elementor versions = 2.2.1...

6.5CVSS6.1AI score0.00234EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/31 11:19 a.m.•1 views

WordPress Classy Addons for Elementor plugin <= 1.2.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Classy Addons for Elementor versions = 1.2.7...

6.5CVSS6.1AI score0.00341EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/31 12:0 a.m.•10 views

WordPress Clever Addons for Elementor Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Clever Addons for Elementor Type Plugin Vulnerable versions = 2.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51580 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 65eb6dbe09f7 Credits João Pedro S Alcântara Kinor...

6.5CVSS6.3AI score0.00234EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by