Lucene search
K

7293 matches found

Patchstack
Patchstack
added 2024/08/16 12:0 a.m.10 views

WordPress Clever Addons for Elementor Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Clever Addons for Elementor Type Plugin Vulnerable versions = 2.2.0 Fixed in 2.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43324 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 278080e3e62e Credits Michael Required privilege...

5.9CVSS6.6AI score0.00245EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.8 views

WordPress Livemesh Addons for WPBakery Page Builder Plugin <= 3.9 is vulnerable to Cross Site Scripting (XSS)

Software Livemesh Addons for WPBakery Page Builder Type Plugin Vulnerable versions = 3.9 Fixed in 3.9.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43320 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID de5a6a68fb13 Credits LVT-tholv2k...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/08/13 6:15 a.m.6 views

CVE-2024-7247

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Custom Gallery and Countdown widgets in all versions up to, and including, 5.7.2 due to insufficient input...

5.4CVSS6AI score0.00451EPSS
Exploits0References8
CVE
CVE
added 2024/08/13 5:30 a.m.54 views

CVE-2024-7247

The CVE-2024-7247 issue affects the Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) WordPress plugin. It allows Stored Cross‑Site Scripting via the plugin’s Custom Gallery and Countdown widgets in all versions up to 5.7.2 due to insufficient...

6.4CVSS5.8AI score0.00451EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/13 5:30 a.m.14 views

CVE-2024-7247 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Custom Gallery and Countdown widgets in all versions up to, and including, 5.7.2 due to insufficient input...

6.4CVSS5.9AI score0.00451EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/08/13 5:30 a.m.33 views

CVE-2024-7247 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Custom Gallery and Countdown widgets in all versions up to, and including, 5.7.2 due to insufficient input...

6.4CVSS0.00451EPSS
Exploits0References8
OSV
OSV
added 2024/08/13 5:15 a.m.7 views

CVE-2024-7092

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nomoreitemstext’ parameter in all versions up to, and including, 5.9.27 due to insufficient input sanitization and output...

5.4CVSS5.9AI score0.00416EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/08/13 2:59 a.m.5 views

WordPress Element Pack Elementor Addons plugin <= 5.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets vulnerability discovered by Webbernaut in WordPress Plugin Element Pack Elementor Addons versions = 5.7.2...

6.4CVSS5.8AI score0.00451EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.5 views

WordPress plugin Element Pack Elementor Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

6.4CVSS5.8AI score0.00451EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.5 views

WordPress plugin Essential Addons for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.4CVSS6.5AI score0.00416EPSS
Exploits0References7
OSV
OSV
added 2024/08/12 11:15 p.m.6 views

CVE-2024-43150

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

5.4CVSS5.8AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2024/08/12 11:15 p.m.20 views

CVE-2024-43150

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

6.5CVSS0.00246EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/08/12 11:15 p.m.4 views

CVE-2024-43150

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

6.5CVSS5.2AI score0.00246EPSS
Exploits0References2
OSV
OSV
added 2024/08/12 10:15 p.m.3 views

CVE-2024-43225

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.7...

5.4CVSS5.8AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2024/08/12 10:15 p.m.10 views

CVE-2024-43225

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.7...

6.5CVSS0.00246EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/08/12 10:15 p.m.4 views

CVE-2024-43225

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.7...

6.5CVSS5.2AI score0.00246EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/08/12 10:15 p.m.5 views

CVE-2024-43151

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder – Lite allows Stored XSS.This issue affects Ultimate Addons for Beaver Builder – Lite: from n/a through 1.5.9...

6.5CVSS5.2AI score0.00246EPSS
Exploits0References2
OSV
OSV
added 2024/08/12 10:15 p.m.4 views

CVE-2024-43151

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Brainstorm Force Ultimate Addons for Beaver Builder – Lite allows Stored XSS.This issue affects Ultimate Addons for Beaver Builder – Lite: from n/a through 1.5.9...

5.4CVSS5.8AI score0.00246EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/12 10:12 p.m.18 views

CVE-2024-43150 WordPress Xpro Elementor Addons plugin <= 1.4.4.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

6.5CVSS0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/12 10:12 p.m.12 views

CVE-2024-43150 WordPress Xpro Elementor Addons plugin <= 1.4.4.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References1
Rows per page
Query Builder