39 matches found
CVE-2024-54315 WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Events Addon for Elementor events-addon-for-elementor allows DOM-Based XSS.This issue affects Events Addon for Elementor: from n/a through = 2.2.2...
CVE-2024-54315
CVE-2024-54315: DOM-based stored XSS in NicheAddons Events Addon for Elementor (Events Addon for Elementor) affects
WordPress plugin Events Addon for Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
PT-2024-36197 · Elementor · Nicheaddons Events Addon For Elementor
Name of the Vulnerable Software and Affected Versions: NicheAddons Events Addon for Elementor versions through 2.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. Recommendations: For...
WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Events Addon for Elementor versions = 2.2.2...
CVE-2024-49264
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Events Addon for Elementor events-addon-for-elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through = 2.2.0...
CVE-2024-49264
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.0...
CVE-2024-49264
CVE-2024-49264 describes a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Event Addon for Elementor (Events Addon for Elementor) that allowed stored XSS vulnerabilities in versions up to 2.2.0. The issue stems from improper neutralization of input during web page generation. Pub...
WordPress plugin Events Addon for Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress Events Addon for Elementor plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Events Addon for Elementor versions = 2.2.0...
CVE-2024-4669
The Events Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Basic Slider, Upcoming Events, and Schedule widgets in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...
WordPress Events Addon for Elementor plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by stealthcopter in WordPress Plugin Events Addon for Elementor versions = 2.1.4...
WordPress plugin Events Addon for Elementor security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2023-47827
Incorrect Authorization vulnerability in NicheAddons Events Addon for Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Events Addon for Elementor: from n/a through 2.1.3...
CVE-2023-47827
The CVE-2023-47827 entry corresponds to the WordPress plugin “Events Addon for Elementor” with versions up to and including 2.1.3 affected by a Broken Access Control/Incorrect Authorization vulnerability. Public sources in the connected documents indicate missing authorization checks in relevant ...
PT-2023-30632 · Elementor · Events Addon For Elementor
Name of the Vulnerable Software and Affected Versions: Events Addon for Elementor versions 2.1.3 and earlier Description: The issue is related to an Incorrect Authorization vulnerability, allowing access to functionality not properly constrained by Access Control Lists ACLs. This means that certa...
WordPress Plugin Events Addon for Elementor Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
WordPress Events Addon for Elementor Plugin <= 2.1.3 is vulnerable to Broken Access Control
Software Events Addon for Elementor Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-47827 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 5dbac8531308 Credits Abdi Pranata...
WordPress Events Addon for Elementor Plugin < 2.0.3 is vulnerable to Cross Site Scripting (XSS)
Software Events Addon for Elementor Type Plugin Vulnerable versions 2.0.3 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2ee0a2921c21 Credits Rafie Muhammad Patchsta...