4 matches found
WordPress Essential Addons for Elementor Plugin < 5.9.16 Multiple XSS Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpdeveloper:essentialaddonsforelementor"; ifdescription...
CVE-2024-4003
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eaelteammembersimagerounded parameter in the Team Members widget in all versions up to, and including, 5.9.15 due to...
CVE-2024-4003
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eaelteammembersimagerounded parameter in the Team Members widget in all versions up to, and including, 5.9.15 due to...
CVE-2024-4003
CVE-2024-4003 affects the WordPress plugin Essential Addons for Elementor – stored XSS via eael_team_members_image_rounded in the Team Members widget; all versions up to 5.9.15 are affected. Exploitation requires an authenticated user with contributor+ rights; scripts can execute when a user visi...