Lucene search
K

70 matches found

CVE
CVE
added 2024/12/06 1:7 p.m.52 views

CVE-2024-54212

CVE-2024-54212 (WordPress Magical Addons For Elementor) Stored XSS due to improper input neutralization during web page generation. Affected plugin: Magical Addons For Elementor (Header/Footer Builder, Free Elementor Widgets, Elementor Templates Library) up to version 1.2.6 (per CVE description)....

6.5CVSS7.2AI score0.00254EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/12/06 1:7 p.m.23 views

CVE-2024-54212 WordPress Magical Addons For Elementor plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through = 1.3.6...

6.5CVSS0.00254EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/06 12:0 a.m.8 views

PT-2024-36090 · Unknown · Noor Alam Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Noor alam Magical Addons For Elementor versions 1.2.6 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker...

6.5CVSS6AI score0.00254EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.6 views

WordPress plugin Magical Addons For Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS7.6AI score0.00254EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/12/02 3:17 p.m.4 views

WordPress Magical Addons For Elementor plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 4rCanJ0x! Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.3.6...

6.5CVSS6.1AI score0.00254EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/09 12:15 p.m.4 views

CVE-2024-10352

The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the getcontenttype function in includes/widgets/content-reveal.php. This makes it possible for authenticated attackers, with Contributor-level acce...

4.3CVSS5.8AI score0.00335EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/09 11:38 a.m.18 views

CVE-2024-10352 Magical Addons For Elementor <= 1.2.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template

The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the getcontenttype function in includes/widgets/content-reveal.php. This makes it possible for authenticated attackers, with Contributor-level acce...

4.3CVSS0.00335EPSS
Exploits0References2
CVE
CVE
added 2024/11/09 11:38 a.m.50 views

CVE-2024-10352

CVE-2024-10352 affects Magical Addons For Elementor for WordPress (including the Header Footer Builder, Free Elementor Widgets, and Elementor Templates Library). The root cause is a vulnerability in get_content_type() inside includes/widgets/content-reveal.php that allows an authenticated attacke...

4.3CVSS4.3AI score0.00335EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/09 2:55 a.m.6 views

WordPress Magical Addons For Elementor plugin <= 1.2.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template vulnerability

Authenticated Contributor+ Sensitive Information Exposure via Elementor Template vulnerability discovered by Ankit Patel in WordPress Plugin Magical Addons For Elementor versions = 1.2.4...

4.3CVSS7AI score0.00335EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/09 12:0 a.m.8 views

PT-2024-16211 · WordPress · Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Magical Addons For Elementor plugin for WordPress versions up to, and including, 1.2.4 Description: The issue allows authenticated attackers with Contributor-level access and above to extract sensitive private, pending, and draft template dat...

4.3CVSS6.3AI score0.00335EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/11/09 12:0 a.m.10 views

WordPress Magical Addons For Elementor Plugin <= 1.2.4 is vulnerable to Sensitive Data Exposure

Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.2.4 Fixed in 1.2.5 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-10352 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7aa4ffe94751 Credits Ankit Patel...

4.3CVSS6.5AI score0.00335EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/11/09 12:0 a.m.6 views

WordPress plugin Magical Addons For Elementor 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

4.3CVSS7.7AI score0.00335EPSS
Exploits0References2
NVD
NVD
added 2024/11/04 2:15 p.m.16 views

CVE-2024-51665

Server-Side Request Forgery SSRF vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through = 1.2.1...

4.9CVSS0.0054EPSS
Exploits0References1
OSV
OSV
added 2024/11/04 2:15 p.m.6 views

CVE-2024-51665

Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through 1.2.1...

4.3CVSS5.8AI score0.0054EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/04 1:36 p.m.14 views

CVE-2024-51665 WordPress Magical Addons For Elementor plugin <= 1.2.1 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through = 1.2.1...

4.9CVSS5.9AI score0.0054EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/04 1:36 p.m.33 views

CVE-2024-51665 WordPress Magical Addons For Elementor plugin <= 1.2.1 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through = 1.2.1...

4.9CVSS0.0054EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/04 12:0 a.m.5 views

WordPress plugin Magical Addons For Elementor 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

4.9CVSS6.9AI score0.0054EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/04 12:0 a.m.9 views

PT-2024-34810 · Noor Alam · Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Magical Addons For Elementor versions 1.2.1 and earlier Description: A Server-Side Request Forgery SSRF vulnerability is present in Noor alam Magical Addons For Elementor, allowing Server Side Request Forgery. Recommendations: For versions...

4.9CVSS6.9AI score0.0054EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/11/01 11:43 a.m.4 views

WordPress Magical Addons For Elementor plugin <= 1.2.1 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.2.1...

4.9CVSS7.1AI score0.0054EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/07/22 11:15 a.m.26 views

CVE-2024-38730

Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...

6.4CVSS0.0021EPSS
Exploits0References1
Rows per page
Query Builder