Lucene search
K

7293 matches found

Patchstack
Patchstack
added 2024/09/27 1:27 a.m.3 views

WordPress Premium Addons for Elementor plugin <= 4.10.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Media Grid Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Media Grid Widget vulnerability discovered by zer0gh0st in WordPress Plugin Premium Addons for Elementor versions = 4.10.52...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.1 views

PT-2024-39175 · WordPress · Premium Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Premium Addons for Elementor plugin for WordPress versions up to, and including, 4.10.52 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Media Grid widget due to insufficient input sanitization and output...

6.4CVSS6.2AI score0.00378EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.4 views

WordPress plugin Premium Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2024/09/27 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2024-0316)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.00299EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/09/26 3:36 a.m.4 views

WordPress Sky Addons for Elementor plugin <= 2.5.11 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Sky Addons for Elementor versions = 2.5.11...

6.5CVSS6.1AI score0.00254EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/26 12:0 a.m.12 views

WordPress Sky Addons for Elementor Plugin <= 2.5.11 is vulnerable to Cross Site Scripting (XSS)

Software Sky Addons for Elementor Type Plugin Vulnerable versions = 2.5.11 Fixed in 2.5.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47332 Patch priority Low CVSS severity Low 6.5 Developer Shahidul Islam PSID 1b7a4bbe875a Credits João Pedro S Alcântara Kinor...

6.5CVSS6.8AI score0.00254EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/09/25 1:15 p.m.28 views

CVE-2024-8546

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video widget in all versions up to, and including, 3.2.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00407EPSS
Exploits0References5
CVE
CVE
added 2024/09/25 12:44 p.m.112 views

CVE-2024-8546

CVE-2024-8546 : ElementsKit Elementor addons for WordPress (

6.4CVSS5.5AI score0.00407EPSS
Exploits0References5Affected Software1
Patchstack
Patchstack
added 2024/09/25 12:29 p.m.3 views

WordPress ElementsReady Addons for Elementor plugin <= 6.4.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin ElementsReady Addons for Elementor versions = 6.4.0...

6.5CVSS6.1AI score0.00254EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/25 11:42 a.m.5 views

WordPress Elementor Addons by Livemesh plugin <= 8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via piechart_settings Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via piechartsettings Parameter vulnerability discovered by stealthcopter in WordPress Plugin Livemesh Addons for Elementor versions = 8.5...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/09/25 11:15 a.m.3 views

CVE-2024-8858

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechartsettings’ parameter in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.4CVSS5.9AI score0.00321EPSS
Exploits0References4
NVD
NVD
added 2024/09/25 11:15 a.m.17 views

CVE-2024-8858

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechartsettings’ parameter in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00321EPSS
Exploits0References4
CVE
CVE
added 2024/09/25 10:59 a.m.49 views

CVE-2024-8858

CVE-2024-8858: Elementor Addons by Livemesh for WordPress is vulnerable to Stored Cross-Site Scripting via the piechart_settings parameter in all versions up to and including 8.5. An authenticated attacker with Contributor-level access or higher can inject scripts that execute when users load the...

6.4CVSS6AI score0.00321EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/09/25 10:59 a.m.27 views

CVE-2024-8858 Elementor Addons by Livemesh <= 8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via piechart_settings Parameter

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechartsettings’ parameter in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00321EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/09/25 10:59 a.m.16 views

CVE-2024-8858 Elementor Addons by Livemesh <= 8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via piechart_settings Parameter

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechartsettings’ parameter in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS6AI score0.00321EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/09/25 8:53 a.m.6 views

WordPress Move Addons for Elementor plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by GoatSniff Patchstack Alliance in WordPress Plugin Move Addons for Elementor versions = 1.3.3...

6.5CVSS6.1AI score0.00256EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/09/25 8:15 a.m.2 views

CVE-2024-47303

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Livemesh Livemesh Addons for Elementor allows Stored XSS.This issue affects Livemesh Addons for Elementor: from n/a through 8.5...

5.4CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/09/25 8:15 a.m.21 views

CVE-2024-47303

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in livemesh Livemesh Addons for Elementor addons-for-elementor allows Cross-Site Scripting XSS.This issue affects Livemesh Addons for Elementor: from n/a through = 8.5...

6.5CVSS0.0022EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/09/25 8:4 a.m.4 views

WordPress HT Mega – Absolute Addons For Elementor plugin <= 2.6.5 - Authenticated (Contributor+) Sensitive Information Exposure via template_id vulnerability

Authenticated Contributor+ Sensitive Information Exposure via templateid vulnerability discovered by Ankit Patel in WordPress Plugin HT Mega versions = 2.6.5...

4.3CVSS7AI score0.00303EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/09/25 8:1 a.m.53 views

CVE-2024-47303

The CVE-2024-47303 entry concerns the WordPress plugin Livemesh Addons for Elementor (versions

6.5CVSS5.9AI score0.0022EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder