Lucene search
K

185 matches found

Vulnrichment
Vulnrichment
added 2024/07/20 7:29 a.m.16 views

CVE-2024-38710 WordPress Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin <= 2.0.6.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.2...

5.9CVSS6.8AI score0.0026EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/20 12:0 a.m.2 views

PT-2024-28155 · Elementor · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Master Addons for Elementor versions prior to 2.0.6.2 no specific start version mentioned, so listing as prior to the end version Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as...

5.9CVSS5.6AI score0.0026EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/07/11 10:39 a.m.2 views

WordPress Master Addons for Elementor plugin <= 2.0.6.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Michael Patchstack Alliance in WordPress Plugin Master Addons for Elementor versions = 2.0.6.2...

5.9CVSS6.1AI score0.0026EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/06/09 12:15 p.m.35 views

CVE-2024-35660

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

9.8CVSS0.00397EPSS
Exploits0References1
OSV
OSV
added 2024/06/09 12:15 p.m.3 views

CVE-2024-35660

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

9.8CVSS5.8AI score0.00397EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/09 11:56 a.m.15 views

CVE-2024-35660 WordPress Master Addons for Elementor plugin <= 2.0.5.4.1 - Broken Access Control on API vulnerability

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

6.5CVSS7AI score0.00397EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/09 12:0 a.m.11 views

WordPress plugin Master Addons for Elementor security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS6.7AI score0.00397EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/09 12:0 a.m.6 views

PT-2024-26607 · Elementor · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Master Addons for Elementor versions 2.0.5.4.1 and earlier Description: The issue is related to a Missing Authorization vulnerability in the Jewel Theme Master Addons for Elementor. Recommendations: For Master Addons for Elementor versions...

9.8CVSS6.8AI score0.00397EPSS
Exploits0References5
OSV
OSV
added 2024/06/08 3:15 p.m.3 views

CVE-2024-35702

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.0...

5.4CVSS5.8AI score0.00237EPSS
Exploits0References1
NVD
NVD
added 2024/06/08 3:15 p.m.15 views

CVE-2024-35702

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.0...

6.5CVSS0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/08 2:41 p.m.21 views

CVE-2024-35688 WordPress Master Addons for Elementor plugin <= 2.0.5.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.5.9...

6.5CVSS0.00262EPSS
Exploits0References1
CVE
CVE
added 2024/06/08 2:41 p.m.47 views

CVE-2024-35688

WordPress Master Addons for Elementor plugin ( 2.0.5.9, specifically fixed in 2.0.6.0. Patch sources (Patchstack) note low exploit likelihood; no exploitation details provided in the document set. References include Patchstack entries indicating vulnerability and fix. Monitor for updates as detai...

6.5CVSS6AI score0.00262EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/06/08 2:15 p.m.52 views

CVE-2024-35702

CVE-2024-35702 affects WordPress Master Addons for Elementor plugin (

6.5CVSS6AI score0.00237EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.3 views

PT-2024-26636 · Elementor · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Master Addons for Elementor versions 2.0.5.9 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...

6.5CVSS5.8AI score0.00262EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/06/08 12:0 a.m.4 views

WordPress plugin Master Addons for Elementor Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.2AI score0.00262EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/08 12:0 a.m.3 views

WordPress plugin Master Addons for Elementor Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.2AI score0.00237EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.5 views

PT-2024-26651 · Elementor · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Master Addons for Elementor versions 2.0.6.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS, which allows Stored XSS. This means that an...

6.5CVSS6.3AI score0.00237EPSS
Exploits0References6
OSV
OSV
added 2024/06/07 1:15 p.m.5 views

CVE-2024-5382

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ma-template' REST API route in all versions up to, and including, 2.0.6.1. This makes it...

5.3CVSS5.8AI score0.00319EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/06/07 1:15 p.m.5 views

CVE-2024-5382

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ma-template' REST API route in all versions up to, and including, 2.0.6.1. This makes it...

6.5CVSS5.9AI score0.00319EPSS
Exploits0References3
OSV
OSV
added 2024/06/07 1:15 p.m.3 views

CVE-2024-5542

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Navigation Menu widget of the plugin's Mega Menu extension in all versions up to, and including, 2.0.6.1 due to insufficient inpu...

6.1CVSS5.9AI score0.00307EPSS
Exploits0References2
Rows per page
Query Builder