70 matches found
CVE-2024-38730 WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...
CVE-2024-38730 WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...
CVE-2024-38730
CVE-2024-38730: SSRF in Magical Addons For Elementor (WordPress plugin) affects Magical Addons For Elementor versions n/a through 1.1.41. Evidence in multiple feeds links to WordPress/plugin vulnerability tracking indicates the issue is present up to 1.1.41 and has been patched in later versions....
WordPress plugin Magical Addons For Elementor 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
PT-2024-28176 · Unknown · Magical Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Magical Addons For Elementor versions 1.1.41 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This means an attacker can potentially trick the server into making unauthorized requests, leading to various...
CVE-2024-38681
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.41...
CVE-2024-38681
CVE-2024-38681 : Stored XSS in Magical Addons For Elementor (WordPress plugin). Root cause: Improper neutralization of input during web page generation. Affected: Magical Addons For Elementor
WordPress Magical Addons For Elementor plugin <= 1.1.41 - Server Side Request Forgery (SSRF) vulnerability
Server Side Request Forgery SSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.1.41...
WordPress Magical Addons For Elementor Plugin <= 1.1.41 is vulnerable to Server Side Request Forgery (SSRF)
Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.41 Fixed in 1.1.42 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-38730 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID fde356989d5f...
WordPress Magical Addons For Elementor plugin <= 1.1.41 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SouzaZinn Patchstack Alliance in WordPress Plugin Magical Addons For Elementor versions = 1.1.41...
WordPress Magical Addons For Elementor Plugin <= 1.1.41 is vulnerable to Cross Site Scripting (XSS)
Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.41 Fixed in 1.1.42 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38681 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3c7be40ba089 Credits SouzaZinn Required...
WordPress Magical Addons For Elementor plugin <= 1.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin Magical Addons For Elementor versions = 1.1.39...
CVE-2024-5161
The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...
CVE-2024-5161
The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...
CVE-2024-5161 Magical Addons For Elementor <= 1.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output...
PT-2024-34752 · WordPress · Magical Addons For Elementor
Name of the Vulnerable Software and Affected Versions: The Magical Addons For Elementor plugin for WordPress versions up to, and including, 1.1.39 Description: The issue is related to Stored Cross-Site Scripting via the id parameter due to insufficient input sanitization and output escaping. This...
WordPress Magical Addons For Elementor plugin <= 1.1.37 - Authenticated (Contributor+) Stored Cross-Site Scripting via Text Effect Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Text Effect Widget vulnerability discovered by João G. Barbosa 4rCanJ0x! in WordPress Plugin Magical Addons For Elementor versions = 1.1.37...
WordPress Magical Addons For Elementor Plugin <= 1.1.37 is vulnerable to Cross Site Scripting (XSS)
Software Magical Addons For Elementor Type Plugin Vulnerable versions = 1.1.37 Fixed in 1.1.38 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2923 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8f23618a4eb9 Credits João G...
CVE-2024-2923
The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's text effect widget in all versions up to, and including, 1.1.37 due to insufficient input sanitization and...
WordPress plugin Magical Addons For Elementor 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...