CVE-2024-43124

CVE-2024-43124 – Graphina (Iqonic Design) WordPress plugin : The vulnerability is a stored XSS in Graphina (Elementor Charts and Graphs) affecting versions from n/a through 1.8.10. The issue stems from improper neutralization of input during web page generation, allowing crafted input to be store...

WordPress plugin Graphina 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Graphina plugin <= 1.8.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Khalid Patchstack Alliance in WordPress Plugin Graphina versions = 1.8.10...

WordPress Graphina Plugin <= 1.8.10 is vulnerable to Cross Site Scripting (XSS)

Software Graphina Type Plugin Vulnerable versions = 1.8.10 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43124 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 730b126f8b88 Credits Khalid Yusuf Required privilege Contributor...

CVE-2024-4574

The Graphina – Elementor Charts and Graphs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.8.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

WordPress plugin Graphina 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress Graphina plugin <= 1.8.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by stealthcopter in WordPress Plugin Graphina versions = 1.8.9...

WordPress Graphina Plugin <= 1.8.9 is vulnerable to Cross Site Scripting (XSS)

Software Graphina Type Plugin Vulnerable versions = 1.8.9 Fixed in 1.8.10 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4574 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 937e343a9f16 Credits stealthcopter Required privile...

CVE-2024-4574 Graphina – Elementor Charts and Graphs <= 1.8.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Graphina – Elementor Charts and Graphs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.8.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-4574

CVE-2024-4574 affects the Graphina – Elementor Charts and Graphs plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting flaw in multiple widgets present in all versions up to and including 1.8.9, caused by insufficient input sanitization and output escaping on user-supplied attr...

PT-2024-31742 · WordPress · Graphina

Name of the Vulnerable Software and Affected Versions: Graphina – Elementor Charts and Graphs plugin for WordPress versions up to, and including, 1.8.9 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied...