WordPress Clever Addons for Elementor Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Clever Addons for Elementor Type Plugin Vulnerable versions = 2.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51580 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 65eb6dbe09f7 Credits João Pedro S Alcântara Kinor...

WordPress Classy Addons for Elementor Plugin <= 1.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Classy Addons for Elementor Type Plugin Vulnerable versions = 1.2.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50553 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e89f889c481e Credits Gab Required privilege...

WordPress Super Addons for Elementor Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Super Addons for Elementor Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51588 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID c260921bb488 Credits Gab Required privilege...

WordPress Elementary Addons Plugin <= 2.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Elementary Addons Type Plugin Vulnerable versions = 2.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51586 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d3940bbe2b1c Credits Gab Required privilege Contributor...

CVE-2024-49665

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks Addons for Elementor: from n/a through 1.1.1...

CVE-2024-49665

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks Addons for Elementor: from n/a through 1.1.1...

CVE-2024-49667

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in NervyThemes Local Business Addons For Elementor allows Stored XSS.This issue affects Local Business Addons For Elementor: from n/a through 1.1.5...

CVE-2024-49665 WordPress Web Bricks Addons for Elementor plugin <= 1.1.1 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks Addons for Elementor: from n/a through 1.1.1...

CVE-2024-49665 WordPress Web Bricks Addons for Elementor plugin <= 1.1.1 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks Addons for Elementor: from n/a through 1.1.1...

CVE-2024-49665

CVE-2024-49665 is a stored XSS in the WordPress plugin Web Bricks Addons for Elementor (versions

CVE-2024-10360

The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the render function in includes/widgets/accordion/widget.php, includes/widgets/remote-template/widget.php, and other widget.php files. This makes it...

CVE-2024-10266

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Box widget in all versions up to, and including, 4.10.60 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-10266

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Box widget in all versions up to, and including, 4.10.60 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-10266

CVE-2024-10266 affects the Premium Addons for Elementor plugin (WordPress). The vulnerability is a stored cross-site scripting flaw in the Video Box widget, exploitable by authenticated attackers with contributor-level access or higher. It affects all versions up to and including 4.10.60; the iss...

CVE-2024-10312

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.4 via the render function in elements/tabs/tabs.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to...

WordPress Move Addons for Elementor plugin <= 1.3.5 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates vulnerability

Authenticated Contributor+ Sensitive Information Exposure via Elementor Templates vulnerability discovered by Ankit Patel in WordPress Plugin Move Addons for Elementor versions = 1.3.5...

WordPress plugin Premium Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

PT-2024-16146 · Unknown · Premium Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Premium Addons for Elementor versions up to and including 4.10.60 Description: The issue is related to Stored Cross-Site Scripting via the Video Box widget due to insufficient input sanitization and output escaping on user-supplied attributes...

PT-2024-33617 · Unknown · Web Bricks Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Web Bricks Addons for Elementor versions 1.1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...

WordPress plugin Local Business Addons For Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...