39 matches found
CVE-2024-2350
The Clever Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the CAFE Icon, CAFE Team Member, and CAFE Slider widgets in all versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping. This makes it possible for...
EUVD-2021-11187
Malware in sbrugna...
EUVD-2024-27304
Malicious code in bioql PyPI...
EUVD-2024-33062
Malicious code in bioql PyPI...
EUVD-2024-40216
Malicious code in bioql PyPI...
CVE-2024-43324
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through 2.2.0...
CVE-2024-10357
The Clever Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.1 via the getTemplateContent function in src/widgets/class-clever-widget-base.php. This makes it possible for authenticated attackers, with...
CVE-2024-51580
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zootemplate Clever Addons for Elementor cafe-lite allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through = 2.2.1...
CVE-2021-24273
The “Clever Addons for Elementor” WordPress Plugin before 2.1.0 has several widgets that are vulnerable to stored Cross-Site Scripting XSS by lower-privileged users such as contributors, all via a similar method...
CVE-2024-51580
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through 2.2.1...
CVE-2024-51580
CVE-2024-51580 affects WordPress plugin Clever Addons for Elementor (versions up to and including 2.2.1). The issue is an Stored Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Impact is described as XSS with potential leakage of inform...
CVE-2024-51580 WordPress Clever Addons for Elementor plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zootemplate Clever Addons for Elementor cafe-lite allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through = 2.2.1...
CVE-2024-51580 WordPress Clever Addons for Elementor plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zootemplate Clever Addons for Elementor cafe-lite allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through = 2.2.1...
WordPress plugin Clever Addons for Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
PT-2024-34723 · Unknown · Clever Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Clever Addons for Elementor versions through 2.2.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows for the storage of maliciou...
WordPress Clever Addons for Elementor plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Clever Addons for Elementor versions = 2.2.1...
WordPress Clever Addons for Elementor Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Software Clever Addons for Elementor Type Plugin Vulnerable versions = 2.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51580 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 65eb6dbe09f7 Credits João Pedro S Alcântara Kinor...
CVE-2024-10357
The Clever Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.1 via the getTemplateContent function in src/widgets/class-clever-widget-base.php. This makes it possible for authenticated attackers, with...
CVE-2024-10357 Clever Addons for Elementor <= 2.2.1 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates
The Clever Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.1 via the getTemplateContent function in src/widgets/class-clever-widget-base.php. This makes it possible for authenticated attackers, with...
WordPress plugin Clever Addons for Elementor 信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...