Lucene search
K

70 matches found

Vulnrichment
Vulnrichment
added 2024/07/22 10:21 a.m.15 views

CVE-2024-38730 WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...

4.9CVSS7AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/22 10:21 a.m.27 views

CVE-2024-38730 WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...

4.9CVSS0.0021EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 10:21 a.m.57 views

CVE-2024-38730

CVE-2024-38730: SSRF in Magical Addons For Elementor (WordPress plugin) affects Magical Addons For Elementor versions n/a through 1.1.41. Evidence in multiple feeds links to WordPress/plugin vulnerability tracking indicates the issue is present up to 1.1.41 and has been patched in later versions....

6.4CVSS5.2AI score0.0021EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/07/22 12:0 a.m.6 views

WordPress plugin Magical Addons For Elementor 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

6.4CVSS6.8AI score0.0021EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.7 views

PT-2024-28176 · Unknown · Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Magical Addons For Elementor versions 1.1.41 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This means an attacker can potentially trick the server into making unauthorized requests, leading to various...

6.4CVSS6.8AI score0.0021EPSS
Exploits0References5
NVD
NVD
added 2024/07/20 8:15 a.m.13 views

CVE-2024-38681

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...

6.5CVSS0.00317EPSS
Exploits0References1
CVE
CVE
added 2024/07/20 7:45 a.m.59 views

CVE-2024-38681

CVE-2024-38681 : Stored XSS in Magical Addons For Elementor (WordPress plugin). Root cause: Improper neutralization of input during web page generation. Affected: Magical Addons For Elementor

6.5CVSS6.5AI score0.00317EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/07/11 12:27 p.m.5 views

WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.1.41...

6.4CVSS7AI score0.0021EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/11 12:0 a.m.8 views

WordPress Magical Addons For Elementor Plugin <= 1.1.41 is vulnerable to Server Side Request Forgery (SSRF)

Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.41 Fixed in 1.1.42 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-38730 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID fde356989d5f...

6.4CVSS6.7AI score0.0021EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/07/10 2:37 p.m.4 views

WordPress Magical Addons For Elementor plugin <= 1.1.41 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SouzaZinn Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.1.41...

6.5CVSS6.1AI score0.00317EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/10 12:0 a.m.10 views

WordPress Magical Addons For Elementor Plugin <= 1.1.41 is vulnerable to Cross Site Scripting (XSS)

Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.41 Fixed in 1.1.42 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38681 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3c7be40ba089 Credits SouzaZinn Required...

6.5CVSS6.6AI score0.00317EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/07 2:54 a.m.9 views

WordPress Magical Addons For Elementor plugin <= 1.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin Magical Addons For Elementor versions = 1.1.39...

6.4CVSS5.7AI score0.00314EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/06 4:15 a.m.4 views

CVE-2024-5161

The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...

5.4CVSS5.9AI score0.00314EPSS
Exploits0References3
NVD
NVD
added 2024/06/06 4:15 a.m.22 views

CVE-2024-5161

The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...

6.4CVSS5.7AI score0.00314EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/06/06 3:53 a.m.18 views

CVE-2024-5161 Magical Addons For Elementor <= 1.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...

6.4CVSS5.8AI score0.00314EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/06/05 12:0 a.m.7 views

PT-2024-34752 · WordPress · Magical Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Magical Addons For Elementor plugin for WordPress versions up to, and including, 1.1.39 Description: The issue is related to Stored Cross-Site Scripting via the id parameter due to insufficient input sanitization and output escaping. This...

6.4CVSS5.9AI score0.00314EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/05/15 5:44 a.m.7 views

WordPress Magical Addons For Elementor plugin <= 1.1.37 - Authenticated (Contributor+) Stored Cross-Site Scripting via Text Effect Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Text Effect Widget vulnerability discovered by João G. Barbosa 4rCanJ0x! in WordPress Plugin Magical Addons For Elementor versions = 1.1.37...

6.4CVSS5.8AI score0.00272EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/15 12:0 a.m.19 views

WordPress Magical Addons For Elementor Plugin <= 1.1.37 is vulnerable to Cross Site Scripting (XSS)

Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.37 Fixed in 1.1.38 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2923 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8f23618a4eb9 Credits João G...

6.4CVSS5.8AI score0.00272EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/14 3:21 p.m.6 views

CVE-2024-2923

The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's text effect widget in all versions up to, and including, 1.1.37 due to insufficient input sanitization and...

5.4CVSS5.9AI score0.00272EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.5 views

WordPress plugin Magical Addons For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.4CVSS6.2AI score0.00272EPSS
Exploits0References3
Rows per page
Query Builder