CVE-2024-3743 Elementor Addon Elements <= 1.13.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Stack Group, Shape Separator, Content Switcher, Info Circle and Timeline widgets in all versions up to, and including, 1.13.3 due to insufficient input sanitization and output escaping. Th...

CVE-2024-3724

CVE-2024-3724 (Happy Addons for Elementor) : WordPress plugin Happy Addons for Elementor (versions

PT-2024-27406 · WordPress · Happy Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Happy Addons for Elementor plugin for WordPress versions up to, and including, 3.10.4 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Image Stack Group, Photo Stack, & Horizontal Timeline widgets due to...

CVE-2023-6896

A vulnerability was found in SourceCodester Simple Image Stack Website 1.0. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument search with the input sy2ap%22%3e%3cscript%3ealert1%3c%2fscript%3etkxh1 leads to cross site scripting. The...

Cross site scripting

A vulnerability was found in SourceCodester Simple Image Stack Website 1.0. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument search with the input sy2ap%22%3e%3cscript%3ealert1%3c%2fscript%3etkxh1 leads to cross site scripting. The...

CVE-2023-6896

The CVE targets SourceCodester Simple Image Stack Website 1.0. The vulnerability is a Cross-Site Scripting (XSS) flaw caused by unsafely handling the search parameter, as demonstrated by input like sy2ap%22%3e%3cscript%3ealert(1)%3c%2fscript%3e. Attacks can be initiated remotely and the exploit h...

Simple Image Stack Website Cross-Site Scripting Vulnerability

Simple Image Stack Website is a simple image display website. A cross-site scripting vulnerability exists in SourceCodester Simple Image Stack Website version 1.0, which stems from the parameter search that causes cross-site scripting...

PT-2023-32806 · Sourcecodester · Sourcecodester Simple Image Stack Website

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Image Stack Website version 1.0 Description: A problem was found in the processing of the search argument, which can be manipulated with a specific input, leading to cross-site scripting. The attack can be initiated...