Lucene search
K

39 matches found

Cvelist
Cvelist
added 2024/12/13 2:25 p.m.33 views

CVE-2024-54315 WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Events Addon for Elementor events-addon-for-elementor allows DOM-Based XSS.This issue affects Events Addon for Elementor: from n/a through = 2.2.2...

6.5CVSS0.00391EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:25 p.m.48 views

CVE-2024-54315

CVE-2024-54315: DOM-based stored XSS in NicheAddons Events Addon for Elementor (Events Addon for Elementor) affects

6.5CVSS7.2AI score0.00391EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.7 views

WordPress plugin Events Addon for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS7.9AI score0.00391EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.6 views

PT-2024-36197 · Elementor · Nicheaddons Events Addon For Elementor

Name of the Vulnerable Software and Affected Versions: NicheAddons Events Addon for Elementor versions through 2.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. Recommendations: For...

6.5CVSS7.2AI score0.00391EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/12/11 8:27 p.m.5 views

WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Events Addon for Elementor versions = 2.2.2...

6.5CVSS6.1AI score0.00391EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/10/17 8:15 p.m.23 views

CVE-2024-49264

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Events Addon for Elementor events-addon-for-elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through = 2.2.0...

6.5CVSS0.00241EPSS
Exploits0References1
OSV
OSV
added 2024/10/17 8:15 p.m.5 views

CVE-2024-49264

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.0...

5.4CVSS5.8AI score0.00241EPSS
Exploits0References1
CVE
CVE
added 2024/10/17 7:26 p.m.51 views

CVE-2024-49264

CVE-2024-49264 describes a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Event Addon for Elementor (Events Addon for Elementor) that allowed stored XSS vulnerabilities in versions up to 2.2.0. The issue stems from improper neutralization of input during web page generation. Pub...

6.5CVSS5.9AI score0.00241EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/10/17 12:0 a.m.4 views

WordPress plugin Events Addon for Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.1AI score0.00241EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/10/14 12:52 p.m.4 views

WordPress Events Addon for Elementor plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Events Addon for Elementor versions = 2.2.0...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/06/11 9:15 p.m.6 views

CVE-2024-4669

The Events Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Basic Slider, Upcoming Events, and Schedule widgets in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...

5.4CVSS6AI score
Exploits0References5
Patchstack
Patchstack
added 2024/06/11 8:49 a.m.5 views

WordPress Events Addon for Elementor plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by stealthcopter in WordPress Plugin Events Addon for Elementor versions = 2.1.4...

6.4CVSS5.8AI score0.00329EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.3 views

WordPress plugin Events Addon for Elementor security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.8AI score0.00329EPSS
Exploits0References7
OSV
OSV
added 2023/11/30 2:15 p.m.4 views

CVE-2023-47827

Incorrect Authorization vulnerability in NicheAddons Events Addon for Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Events Addon for Elementor: from n/a through 2.1.3...

7.5CVSS5.8AI score0.0048EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 1:31 p.m.56 views

CVE-2023-47827

The CVE-2023-47827 entry corresponds to the WordPress plugin “Events Addon for Elementor” with versions up to and including 2.1.3 affected by a Broken Access Control/Incorrect Authorization vulnerability. Public sources in the connected documents indicate missing authorization checks in relevant ...

7.5CVSS7.3AI score0.0048EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.6 views

PT-2023-30632 · Elementor · Events Addon For Elementor

Name of the Vulnerable Software and Affected Versions: Events Addon for Elementor versions 2.1.3 and earlier Description: The issue is related to an Incorrect Authorization vulnerability, allowing access to functionality not properly constrained by Access Control Lists ACLs. This means that certa...

7.5CVSS7.3AI score0.0048EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/11/30 12:0 a.m.5 views

WordPress Plugin Events Addon for Elementor Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

7.5CVSS6.6AI score0.0048EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/16 12:0 a.m.9 views

WordPress Events Addon for Elementor Plugin <= 2.1.3 is vulnerable to Broken Access Control

Software Events Addon for Elementor Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-47827 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 5dbac8531308 Credits Abdi Pranata...

7.5CVSS6.5AI score0.0048EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.5 views

WordPress Events Addon for Elementor Plugin < 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Events Addon for Elementor Type Plugin Vulnerable versions 2.0.3 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2ee0a2921c21 Credits Rafie Muhammad Patchsta...

6.9AI score0.00284EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder