7293 matches found
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.0.5 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Ultimate Store Kit Elementor Addons versions = 2.0.5...
WordPress Enter Addons – Ultimate Template Builder for Elementor plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Enter Addons versions = 2.1.8...
WordPress Element Pack Elementor Addons plugin <= 5.7.5 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin Element Pack Elementor Addons versions = 5.7.5...
WordPress Move Addons for Elementor plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Move Addons for Elementor versions = 1.3.4...
WordPress Happy Addons for Elementor plugin <= 3.12.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin Happy Addons for Elementor versions = 3.12.0...
WordPress ElementsReady Addons for Elementor plugin <= 6.4.2 - Open Redirection vulnerability
Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin ElementsReady Addons for Elementor versions 6.4.2...
WordPress ElementInvader Addons for Elementor Plugin <= 1.2.7 is vulnerable to Cross Site Scripting (XSS)
Software ElementInvader Addons for Elementor Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47630 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID aaaaf3bb1fb3 Credits João Pedro S...
PT-2024-32615 · Unknown · Move Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Move Addons for Elementor versions 1.3.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in Move Addons for...
WordPress Happy Addons for Elementor Plugin <= 3.12.0 is vulnerable to Cross Site Scripting (XSS)
Software Happy Addons for Elementor Type Plugin Vulnerable versions = 3.12.0 Fixed in 3.12.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47357 Patch priority Low CVSS severity Low 6.5 Developer Leevio PSID 16b2bad2bdae Credits Robert DeVore Required privilege...
WordPress Element Pack Elementor Addons Plugin <= 5.7.5 is vulnerable to Cross Site Scripting (XSS)
Software Element Pack Elementor Addons Type Plugin Vulnerable versions = 5.7.5 Fixed in 5.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47392 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 14adf62b67cc Credits Robert DeVore Required...
WordPress Enter Addons Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS)
Software Enter Addons Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47625 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0a331c0c111f Credits João Pedro S Alcântara Kinorth Required...
WordPress Ultimate Store Kit Elementor Addons Plugin <= 2.0.5 is vulnerable to Cross Site Scripting (XSS)
Software Ultimate Store Kit Elementor Addons Type Plugin Vulnerable versions = 2.0.5 Fixed in 2.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47629 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e081deb07019 Credits João Pedro S...
WordPress The Pack Elementor addons Plugin <= 2.0.8.8 is vulnerable to Cross Site Scripting (XSS)
Software The Pack Elementor addons Type Plugin Vulnerable versions = 2.0.8.8 Fixed in 2.0.9 OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-47383 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d40e6721b69f Credits Michael Required...
WordPress Mega Elements – Addons for Elementor plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Mega Elements versions = 1.2.4...
CVE-2024-8681
The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-8681
The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-8681
Consolidated findings for CVE-2024-8681 show that Premium Addons for Elementor (WordPress) allows Stored Cross-Site Scripting via the Media Grid widget in all versions up to 4.10.52. The underlying issue is insufficient input sanitization and output escaping on user-supplied attributes, enabling ...
CVE-2024-8681 Premium Addons for Elementor <= 4.10.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Media Grid Widget
The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
MGASA-2024-0316 Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities
Upstream kernel version 6.6.52 fixes bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...
Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities
Upstream kernel version 6.6.52 fixes bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...