Lucene search
K

7293 matches found

Vulnrichment
Vulnrichment
added 2024/08/02 9:29 a.m.13 views

CVE-2024-4643 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘endredirectlink’ parameter in versions up to, and including, 5.7.1 due to insufficient input sanitization and output...

6.4CVSS6.1AI score0.00351EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/08/02 9:29 a.m.38 views

CVE-2024-4643 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘endredirectlink’ parameter in versions up to, and including, 5.7.1 due to insufficient input sanitization and output...

6.4CVSS0.00351EPSS
Exploits0References4
CVE
CVE
added 2024/08/02 9:29 a.m.31 views

CVE-2024-4643

CVE-2024-4643 concerns the WordPress plugin “Element Pack Elementor Addons” (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows). The vulnerability is a Stored Cross-Site Scripting (XSS) via the end_redirect_link parameter in versions up to and including 5.7.1, caused by insu...

6.4CVSS5.8AI score0.00351EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/02 12:0 a.m.3 views

PT-2024-31987 · WordPress · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: The Element Pack Elementor Addons plugin for WordPress versions up to, and including, 5.7.1 Description: The issue is related to Stored Cross-Site Scripting via the end redirect link parameter due to insufficient input sanitization and output...

6.4CVSS6.1AI score0.00351EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/08/02 12:0 a.m.4 views

WordPress plugin Element Pack Elementor Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

6.4CVSS6AI score0.00351EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/08/02 12:0 a.m.9 views

WordPress Essential Addons for Elementor Plugin < 5.9.18 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpdeveloper:essentialaddonsforelementor"; ifdescription...

6.4CVSS6.3AI score0.00602EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/08/02 12:0 a.m.16 views

WordPress Essential Addons for Elementor Plugin < 5.8.15 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpdeveloper:essentialaddonsforelementor"; ifdescription...

6.4CVSS6AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2024/08/01 10:15 p.m.22 views

CVE-2024-39667

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in BdThemes Element Pack Elementor Addons allows Stored XSS.This issue affects Element Pack Elementor Addons: from n/a through 5.6.11...

6.5CVSS0.00247EPSS
Exploits0References1
OSV
OSV
added 2024/08/01 10:15 p.m.4 views

CVE-2024-39667

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in BdThemes Element Pack Elementor Addons allows Stored XSS.This issue affects Element Pack Elementor Addons: from n/a through 5.6.11...

5.4CVSS5.8AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2024/08/01 10:15 p.m.12 views

CVE-2024-39649

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite.This issue affects Essential Addons for Elementor: from n/a through = 5.9.26...

6.5CVSS0.00279EPSS
Exploits0References1
OSV
OSV
added 2024/08/01 10:15 p.m.2 views

CVE-2024-39649

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS.This issue affects Essential Addons for Elementor: from n/a through 5.9.26...

5.4CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/01 9:33 p.m.15 views

CVE-2024-39667 WordPress Element Pack Elementor Addons plugin <= 5.6.11 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in BdThemes Element Pack Elementor Addons allows Stored XSS.This issue affects Element Pack Elementor Addons: from n/a through 5.6.11...

6.5CVSS6.8AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2024/08/01 9:15 p.m.26 views

CVE-2024-38768

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects The Pack Elementor addons: from n/a through 2.0.8.6...

8.8CVSS0.0049EPSS
Exploits0References1
OSV
OSV
added 2024/08/01 9:15 p.m.8 views

CVE-2024-38768

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects The Pack Elementor addons: from n/a through 2.0.8.6...

8.8CVSS5.8AI score0.0049EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/01 8:58 p.m.20 views

CVE-2024-38768 WordPress The Pack Elementor addons plugin <= 2.0.8.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects The Pack Elementor addons: from n/a through 2.0.8.6...

4.3CVSS0.0049EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/01 8:58 p.m.21 views

CVE-2024-38768 WordPress The Pack Elementor addons plugin <= 2.0.8.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects The Pack Elementor addons: from n/a through 2.0.8.6...

4.3CVSS6.9AI score0.0049EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/01 3:14 p.m.4 views

WordPress Element Pack Elementor Addons plugin <= 5.6.11 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by wcraft Patchstack Alliance in WordPress Plugin Element Pack Elementor Addons versions = 5.6.11...

6.5CVSS6.1AI score0.00247EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/01 2:7 p.m.3 views

WordPress Essential Addons for Elementor plugin <= 5.9.26 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by wcraft Patchstack Alliance in WordPress Plugin Essential Addons for Elementor versions = 5.9.26...

6.5CVSS6.1AI score0.00279EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.4 views

WordPress plugin Essential Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.1AI score0.00279EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.5 views

WordPress plugin Element Pack Elementor Addons 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.1AI score0.00247EPSS
Exploits0References2
Rows per page
Query Builder