Lucene search
K

7293 matches found

Patchstack
Patchstack
added 2024/09/30 11:34 a.m.3 views

WordPress Ultimate Store Kit Elementor Addons plugin <= 2.0.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Ultimate Store Kit Elementor Addons versions = 2.0.5...

6.5CVSS6.1AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 11:27 a.m.5 views

WordPress Enter Addons – Ultimate Template Builder for Elementor plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Enter Addons versions = 2.1.8...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 11:10 a.m.3 views

WordPress Element Pack Elementor Addons plugin <= 5.7.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin Element Pack Elementor Addons versions = 5.7.5...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 9:42 a.m.4 views

WordPress Move Addons for Elementor plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Move Addons for Elementor versions = 1.3.4...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 9:10 a.m.4 views

WordPress Happy Addons for Elementor plugin <= 3.12.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin Happy Addons for Elementor versions = 3.12.0...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 9:0 a.m.3 views

WordPress ElementsReady Addons for Elementor plugin <= 6.4.2 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin ElementsReady Addons for Elementor versions 6.4.2...

6.1CVSS7AI score0.00236EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.8 views

WordPress ElementInvader Addons for Elementor Plugin <= 1.2.7 is vulnerable to Cross Site Scripting (XSS)

Software ElementInvader Addons for Elementor Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47630 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID aaaaf3bb1fb3 Credits João Pedro S...

6.5CVSS6.8AI score0.00241EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/30 12:0 a.m.5 views

PT-2024-32615 · Unknown · Move Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Move Addons for Elementor versions 1.3.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in Move Addons for...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.12 views

WordPress Happy Addons for Elementor Plugin <= 3.12.0 is vulnerable to Cross Site Scripting (XSS)

Software Happy Addons for Elementor Type Plugin Vulnerable versions = 3.12.0 Fixed in 3.12.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47357 Patch priority Low CVSS severity Low 6.5 Developer Leevio PSID 16b2bad2bdae Credits Robert DeVore Required privilege...

6.5CVSS6.6AI score0.00241EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.8 views

WordPress Element Pack Elementor Addons Plugin <= 5.7.5 is vulnerable to Cross Site Scripting (XSS)

Software Element Pack Elementor Addons Type Plugin Vulnerable versions = 5.7.5 Fixed in 5.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47392 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 14adf62b67cc Credits Robert DeVore Required...

6.5CVSS6.5AI score0.00241EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.13 views

WordPress Enter Addons Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS)

Software Enter Addons Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47625 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0a331c0c111f Credits João Pedro S Alcântara Kinorth Required...

6.5CVSS6.8AI score0.00241EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.6 views

WordPress Ultimate Store Kit Elementor Addons Plugin <= 2.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Store Kit Elementor Addons Type Plugin Vulnerable versions = 2.0.5 Fixed in 2.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47629 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e081deb07019 Credits João Pedro S...

6.5CVSS6.8AI score0.00237EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.10 views

WordPress The Pack Elementor addons Plugin <= 2.0.8.8 is vulnerable to Cross Site Scripting (XSS)

Software The Pack Elementor addons Type Plugin Vulnerable versions = 2.0.8.8 Fixed in 2.0.9 OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-47383 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d40e6721b69f Credits Michael Required...

5.9CVSS6.2AI score0.00241EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/09/27 9:59 a.m.4 views

WordPress Mega Elements – Addons for Elementor plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Mega Elements versions = 1.2.4...

6.5CVSS6.1AI score0.00249EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/09/27 7:15 a.m.17 views

CVE-2024-8681

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00378EPSS
Exploits0References7
OSV
OSV
added 2024/09/27 7:15 a.m.3 views

CVE-2024-8681

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

5.4CVSS6AI score0.00378EPSS
Exploits0References7
CVE
CVE
added 2024/09/27 6:53 a.m.51 views

CVE-2024-8681

Consolidated findings for CVE-2024-8681 show that Premium Addons for Elementor (WordPress) allows Stored Cross-Site Scripting via the Media Grid widget in all versions up to 4.10.52. The underlying issue is insufficient input sanitization and output escaping on user-supplied attributes, enabling ...

6.4CVSS5.5AI score0.00378EPSS
Exploits0References7Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/27 6:53 a.m.10 views

CVE-2024-8681 Premium Addons for Elementor <= 4.10.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Media Grid Widget

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References7
OSV
OSV
added 2024/09/27 1:30 a.m.10 views

MGASA-2024-0316 Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities

Upstream kernel version 6.6.52 fixes bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...

7.8CVSS6.5AI score0.00299EPSS
Exploits0References4
Mageia
Mageia
added 2024/09/27 1:30 a.m.54 views

Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities

Upstream kernel version 6.6.52 fixes bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...

7.8CVSS8.2AI score0.00299EPSS
Exploits0References3
Rows per page
Query Builder