WordPress plugin Web Bricks Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress plugin Exclusive Addons for Elementor 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

WordPress plugin Kata Plus–Addons for Elementor–Widgets, Extensions and Templates 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

WordPress plugin Move Addons for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-16179 · Unknown · Exclusive Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Exclusive Addons for Elementor versions up to, and including, 2.7.4 Description: The issue allows authenticated attackers with Contributor-level access and above to extract sensitive private, pending, and draft template data via the render...

WordPress Premium Addons for Elementor Plugin <= 4.10.60 is vulnerable to Cross Site Scripting (XSS)

Software Premium Addons for Elementor Type Plugin Vulnerable versions = 4.10.60 Fixed in 4.10.61 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10266 Patch priority Low CVSS severity Low 6.5 Developer LeapWorx PSID 13c728eb67aa Credits zer0gh0st...

PT-2024-39604 · WordPress · Kata Plus – Addons For Elementor – Widgets

Name of the Vulnerable Software and Affected Versions: The Kata Plus – Addons for Elementor – Widgets, Extensions and Templates plugin for WordPress versions up to, and including, 1.4.7 Description: The issue is related to Stored Cross-Site Scripting via SVG File uploads due to insufficient input...

PT-2024-33618 · Nervythemes +1 · Nervythemes Local Business Addons For Elementor +1

Name of the Vulnerable Software and Affected Versions: NervyThemes Local Business Addons For Elementor versions 1.1.5 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS...

WordPress Exclusive Addons for Elementor plugin <= 2.7.4 - Authenticated (Contributor+) Sensitive Information Exposure vulnerability

Authenticated Contributor+ Sensitive Information Exposure vulnerability discovered by Ankit Patel in WordPress Plugin Exclusive Addons Elementor versions = 2.7.4...

CVE-2024-50453

Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through 2.0.9...

CVE-2024-50457

: Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Qode Interactive Qode Essential Addons.This issue affects Qode Essential Addons: from n/a through 1.6.3...

CVE-2024-50457

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Qode Qode Essential Addons qode-essential-addons.This issue affects Qode Essential Addons: from n/a through = 1.6.3...

CVE-2024-50453

CVE-2024-50453 is a Relative Path Traversal vulnerability in the WordPress plugin family The Pack Elementor addons. Affected versions are listed as from n/a through 2.0.9. The underlying issue enables PHP Local File Inclusion, which could allow an attacker to access restricted files on the server...

CVE-2024-50453 WordPress The Pack Elementor addons plugin <= 2.0.9 - Local File Inclusion vulnerability

Relative Path Traversal vulnerability in webangon The Pack Elementor addons the-pack-addon allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through = 2.0.9...

CVE-2024-50453 WordPress The Pack Elementor addons plugin <= 2.0.9 - Local File Inclusion vulnerability

Relative Path Traversal vulnerability in webangon The Pack Elementor addons the-pack-addon allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through = 2.0.9...

CVE-2024-50457 WordPress Qode Essential Addons plugin <= 1.6.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Qode Qode Essential Addons qode-essential-addons.This issue affects Qode Essential Addons: from n/a through = 1.6.3...

CVE-2024-50433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor sky-elementor-addons allows Cross-Site Scripting XSS.This issue affects Sky Addons for Elementor: from n/a through = 2.5.15...

CVE-2024-50433

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor allows Stored XSS.This issue affects Sky Addons for Elementor: from n/a through 2.5.15...

CVE-2024-50433

CVE-2024-50433 (Sky Addons for Elementor) stores XSS vulnerability in Sky Addons for Elementor versions

CVE-2024-50433 WordPress Sky Addons for Elementor plugin <= 2.5.15 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor sky-elementor-addons allows Cross-Site Scripting XSS.This issue affects Sky Addons for Elementor: from n/a through = 2.5.15...