Lucene search
K

7293 matches found

OSV
OSV
added 2024/10/08 12:15 p.m.3 views

CVE-2024-8482

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 1.3.982 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.9AI score0.00432EPSS
Exploits0References3
CVE
CVE
added 2024/10/08 11:34 a.m.57 views

CVE-2024-8482

CVE-2024-8482 affects the WordPress plugin Royal Elementor Addons and Templates (versions

6.4CVSS5.9AI score0.00432EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/10/08 3:6 a.m.5 views

WordPress Royal Elementor Addons and Templates plugin <= 1.3.986 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Member Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Team Member Widget vulnerability discovered by Webbernaut in WordPress Plugin Royal Elementor Addons versions = 1.3.986...

6.4CVSS5.8AI score0.00432EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.7 views

PT-2024-39048 · WordPress · The Royal Elementor Addons/Templates

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Addons and Templates plugin for WordPress versions up to, and including, 1.3.982 Description: The issue is related to Stored Cross-Site Scripting via the url parameter due to insufficient input sanitization and output...

6.4CVSS6.2AI score0.00432EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/10/08 12:0 a.m.12 views

WordPress Royal Elementor Addons Plugin <= 1.3.986 is vulnerable to Cross Site Scripting (XSS)

Software Royal Elementor Addons Type Plugin Vulnerable versions = 1.3.986 Fixed in 1.3.987 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8482 Patch priority Low CVSS severity Low 6.5 Developer WProyal PSID f2664b64a1b3 Credits Webbernaut Required...

6.4CVSS6AI score0.00432EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.4 views

WordPress plugin Royal Elementor Addons and Template 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.4CVSS5.8AI score0.00432EPSS
Exploits0References4
NVD
NVD
added 2024/10/06 11:15 a.m.11 views

CVE-2024-47332

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor sky-elementor-addons allows Stored XSS.This issue affects Sky Addons for Elementor: from n/a through = 2.5.11...

6.5CVSS0.00254EPSS
Exploits0References1
OSV
OSV
added 2024/10/06 11:15 a.m.2 views

CVE-2024-47332

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor allows Stored XSS.This issue affects Sky Addons for Elementor: from n/a through 2.5.11...

5.4CVSS5.8AI score0.00254EPSS
Exploits0References1
OSV
OSV
added 2024/10/06 11:15 a.m.4 views

CVE-2024-47329

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in QuomodoSoft ElementsReady Addons for Elementor allows Stored XSS.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.0...

5.4CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/06 11:3 a.m.13 views

CVE-2024-47329 WordPress ElementsReady Addons for Elementor plugin <= 6.4.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite allows Cross-Site Scripting XSS.This issue affects ElementsReady Addons for Elementor: from n/a through = 6.4.0...

6.5CVSS5.1AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 11:3 a.m.51 views

CVE-2024-47329

The CVE-2024-47329 entry concerns WordPress plugin ElementsReady Addons for Elementor. A stored XSS vulnerability exists in versions

6.5CVSS5.9AI score0.00254EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/06 11:3 a.m.24 views

CVE-2024-47329 WordPress ElementsReady Addons for Elementor plugin <= 6.4.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite allows Cross-Site Scripting XSS.This issue affects ElementsReady Addons for Elementor: from n/a through = 6.4.0...

6.5CVSS0.00254EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 11:2 a.m.23 views

CVE-2024-47332 WordPress Sky Addons for Elementor plugin <= 2.5.11 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor sky-elementor-addons allows Stored XSS.This issue affects Sky Addons for Elementor: from n/a through = 2.5.11...

6.5CVSS0.00254EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/06 11:2 a.m.13 views

CVE-2024-47332 WordPress Sky Addons for Elementor plugin <= 2.5.11 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in wowDevs Sky Addons for Elementor allows Stored XSS.This issue affects Sky Addons for Elementor: from n/a through 2.5.11...

6.5CVSS6.8AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 11:2 a.m.45 views

CVE-2024-47332

CVE-2024-47332 affects the WordPress Sky Addons for Elementor plugin, with stored XSS due to improper input neutralization during web page generation. Impact is limited to Sky Addons for Elementor versions up to 2.5.11 (patch released in 2.5.12). Remediation: update to 2.5.12 or later; patch deta...

6.5CVSS5.9AI score0.00254EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/10/06 10:15 a.m.11 views

CVE-2024-47364

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in moveaddons Move Addons for Elementor move-addons allows Stored XSS.This issue affects Move Addons for Elementor: from n/a through = 1.3.4...

6.5CVSS0.00241EPSS
Exploits0References1
OSV
OSV
added 2024/10/06 10:15 a.m.3 views

CVE-2024-47364

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Move addons Move Addons for Elementor allows Stored XSS.This issue affects Move Addons for Elementor: from n/a through 1.3.4...

5.4CVSS5.8AI score0.00241EPSS
Exploits0References1
OSV
OSV
added 2024/10/06 10:15 a.m.1 views

CVE-2024-47357

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Leevio Happy Addons for Elementor allows Stored XSS.This issue affects Happy Addons for Elementor: from n/a through 3.12.0...

5.4CVSS5.8AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2024/10/06 10:15 a.m.12 views

CVE-2024-47357

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HappyMonster Happy Addons for Elementor happy-elementor-addons allows Stored XSS.This issue affects Happy Addons for Elementor: from n/a through = 3.12.0...

6.5CVSS0.00241EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 9:58 a.m.59 views

CVE-2024-47357

CVE-2024-47357 affects the WordPress plugin Happy Addons for Elementor (versions

6.5CVSS5.9AI score0.00241EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder