Lucene search
K

7293 matches found

Vulnrichment
Vulnrichment
added 2024/07/22 8:49 a.m.15 views

CVE-2024-37263 WordPress Enter Addons – Ultimate Template Builder for Elementor plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.6...

6.5CVSS6.8AI score0.00261EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 8:40 a.m.58 views

CVE-2024-37409

CVE-2024-37409 is a stored XSS in Beaver Addons PowerPack Lite for Beaver Builder. The Red Hat/NVD entries and Wordfence detail confirm: affected software is PowerPack Lite for Beaver Builder, version 1.3.0.4 and earlier; root cause is improper neutralization of input during web page generation. ...

5.9CVSS5.9AI score0.00293EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/22 8:40 a.m.14 views

CVE-2024-37409 WordPress PowerPack Lite for Beaver Builder plugin <= 1.3.0.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in IdeaBox Creations PowerPack Lite for Beaver Builder powerpack-addon-for-beaver-builder.This issue affects PowerPack Lite for Beaver Builder: from n/a through = 1.3.0.4...

5.9CVSS5.2AI score0.00293EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.6 views

PT-2024-27528 · Beaver Addons · Beaver Addons Powerpack Lite

Name of the Vulnerable Software and Affected Versions: Beaver Addons PowerPack Lite for Beaver Builder versions 1.3.0.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS...

5.9CVSS5.8AI score0.00293EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.5 views

PT-2024-27317 · Unknown · Biplob018 Shortcode Addons

Name of the Vulnerable Software and Affected Versions: biplob018 Shortcode Addons versions 3.2.5 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendation...

5.9CVSS5.8AI score0.00276EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/07/22 12:0 a.m.4 views

WordPress plugin Magical Addons For Elementor 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

6.4CVSS6.8AI score0.0021EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.7 views

PT-2024-28176 · Unknown · Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Magical Addons For Elementor versions 1.1.41 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This means an attacker can potentially trick the server into making unauthorized requests, leading to various...

6.4CVSS6.8AI score0.0021EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.4 views

PT-2024-27428 · Unknown · Enter Addons

Name of the Vulnerable Software and Affected Versions: Enter Addons versions 2.1.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For version...

6.5CVSS5.8AI score0.00261EPSS
Exploits0References5
OSV
OSV
added 2024/07/21 9:15 p.m.2 views

CVE-2024-38784

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1...

4.8CVSS5.8AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2024/07/21 9:15 p.m.14 views

CVE-2024-38784

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1...

5.9CVSS0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/21 9:11 p.m.16 views

CVE-2024-38784 WordPress Livemesh Addons for Beaver Builder plugin <= 3.6.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1...

5.9CVSS0.0026EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/21 9:11 p.m.12 views

CVE-2024-38784 WordPress Livemesh Addons for Beaver Builder plugin <= 3.6.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1...

5.9CVSS6.8AI score0.0026EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 9:11 p.m.49 views

CVE-2024-38784

Summary (CVE-2024-38784) : The Livemesh Addons for Beaver Builder plugin is vulnerable to Stored XSS due to improper input neutralization during web page generation. Affected versions are up to 3.6.1; a patch is available in version 3.7 and later. Exploitation details are not provided in the init...

5.9CVSS7AI score0.0026EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/07/20 9:15 a.m.17 views

CVE-2024-37922

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through = 4.10.34...

6.5CVSS0.00263EPSS
Exploits0References2
OSV
OSV
added 2024/07/20 9:15 a.m.4 views

CVE-2024-37922

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.34...

5.4CVSS5.8AI score0.00263EPSS
Exploits0References1
CVE
CVE
added 2024/07/20 8:57 a.m.56 views

CVE-2024-37922

CVE-2024-37922 is a Stored XSS in Leap13 Premium Addons for Elementor (WordPress) affecting Premium Addons for Elementor up to version 4.10.34. The underlying issue is improper neutralization of input during web page generation. A patch exists (update to a version later than 4.10.34); apply the f...

6.5CVSS5.9AI score0.00263EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/07/20 8:57 a.m.21 views

CVE-2024-37922 WordPress Premium Addons for Elementor plugin <= 4.10.34 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through = 4.10.34...

6.5CVSS0.00263EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/20 8:57 a.m.19 views

CVE-2024-37922 WordPress Premium Addons for Elementor plugin <= 4.10.34 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.34...

6.5CVSS6.8AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2024/07/20 8:15 a.m.1 views

CVE-2024-38710

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.2...

4.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/07/20 8:15 a.m.15 views

CVE-2024-38705

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ElementInvader ElementInvader Addons for Elementor allows Stored XSS.This issue affects ElementInvader Addons for Elementor: from n/a through 1.2.4...

6.5CVSS0.00261EPSS
Exploits0References1
Rows per page
Query Builder