Lucene search
+L

33 matches found

OSV
OSV
added 2024/11/05 12:15 p.m.7 views

CVE-2024-9657

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tooltip' parameter in all versions up to, and including, 5.10.2 due to insufficient input sanitization and output...

5.4CVSS6AI score0.00336EPSS
Exploits0References7
OSV
OSV
added 2024/11/02 2:15 a.m.5 views

CVE-2024-10310

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom Gallery Widget 'imagetitle' parameter in all versions up to, and including, 5.10.1 due to insufficient input...

5.4CVSS5.9AI score0.00244EPSS
Exploits0References2
CVE
CVE
added 2024/11/02 2:3 a.m.49 views

CVE-2024-9868

CVE-2024-9868 affects the WordPress plugin Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) . All versions up to and including 5.10.1 are susceptible to a Stored Cross-Site Scripting (XSS) via the Age Gate Widget’s url parameter, caused by in...

5.4CVSS5.2AI score0.00256EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.7 views

PT-2024-39900 · WordPress · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: The Element Pack Elementor Addons plugin for WordPress versions up to, and including, 5.10.1 Description: The issue is related to Stored Cross-Site Scripting via the url parameter in the Age Gate Widget, caused by insufficient input...

5.4CVSS6.2AI score0.00256EPSS
Exploits0References10
OSV
OSV
added 2024/08/12 1:38 p.m.4 views

CVE-2024-4359

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 5.7.2 via the SVG widget and a lack of sufficient file validation in the rendersvg function...

6.5CVSS5.9AI score0.00507EPSS
Exploits0References2
OSV
OSV
added 2024/08/02 10:16 a.m.5 views

CVE-2024-4643

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘endredirectlink’ parameter in versions up to, and including, 5.7.1 due to insufficient input sanitization and output...

5.4CVSS5.9AI score0.00373EPSS
Exploits0References2
OSV
OSV
added 2024/07/18 9:15 a.m.5 views

CVE-2024-5555

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘social-link-title’ parameter in all versions up to, and including, 5.6.5 due to insufficient input sanitization and...

6.4CVSS6AI score0.00499EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/07/18 9:15 a.m.6 views

CVE-2024-5555

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘social-link-title’ parameter in all versions up to, and including, 5.6.5 due to insufficient input sanitization and...

6.4CVSS6.1AI score0.00499EPSS
Exploits0References4
OSV
OSV
added 2024/05/22 7:15 a.m.6 views

CVE-2024-3927

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Form Submission Admin Email Bypass in all versions up to, and including, 5.6.3. This is due to the plugin not properly checking for all variations of an...

5.3CVSS5.8AI score0.00425EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.5 views

PT-2024-18039 · WordPress · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: The Element Pack Elementor Addons plugin for WordPress versions up to, and including, 5.6.0 Description: The issue is related to Stored Cross-Site Scripting via the tab link attribute of the Panel Slider widget due to insufficient input...

6.4CVSS5.9AI score0.00323EPSS
Exploits0References7
OSV
OSV
added 2024/04/06 8:15 a.m.4 views

CVE-2024-0837

The Element Pack Elementor Addons Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image URL parameter in all versions up to, and including, 5.3.2 due to...

5.4CVSS5.9AI score0.00344EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/06 7:34 a.m.56 views

CVE-2024-0837 Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid) <= 5.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'Custom Gallery' Widget

The Element Pack Elementor Addons Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image URL parameter in all versions up to, and including, 5.3.2 due to...

6.4CVSS5.8AI score0.00344EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/06 7:34 a.m.15 views

CVE-2024-1428 Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid) <= 5.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Trailer Box Widget

The Element Pack Elementor Addons Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘elementpackwrapperlink’ attribute of the Trailer Box widget in all versions up...

6.4CVSS7.4AI score0.00434EPSS
Exploits0References3
Rows per page
Query Builder