Lucene search
K

185 matches found

Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.5 views

PT-2024-23983 · WordPress · The Master Addons

Name of the Vulnerable Software and Affected Versions: The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress versions up to, and including, 2.0.6.0 Description: The issue is related to Stored Cross-Site Scripting via the title html tag...

6.4CVSS6AI score0.00257EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.7 views

WordPress plugin Master Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.8AI score0.00257EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.4 views

PT-2024-31781 · WordPress · The Master Addons

Name of the Vulnerable Software and Affected Versions: The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress versions up to, and including, 2.0.6.0 Description: The issue is related to Stored Cross-Site Scripting due to insufficient inp...

6.4CVSS5.7AI score0.00329EPSS
Exploits0References11
OSV
OSV
added 2024/05/02 5:15 p.m.5 views

CVE-2024-4265

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 2.0.5.9 due to insufficient input sanitization and output escaping. This makes ...

5.4CVSS5.9AI score0.00556EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/02 12:0 a.m.5 views

PT-2024-30093 · WordPress · The Master Addons

Name of the Vulnerable Software and Affected Versions: The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress versions up to, and including, 2.0.5.9 Description: The issue is related to Stored Cross-Site Scripting due to insufficient inp...

6.4CVSS5.9AI score0.00556EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.3 views

WordPress plugin Master Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS6.3AI score0.00556EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/05/01 1:4 p.m.2 views

WordPress Master Addons for Elementor plugin <= 2.0.5.9 - Contributor+ Stored Cross-Site Scripting vulnerability

Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin Master Addons for Elementor versions = 2.0.5.9...

6.4CVSS5.7AI score0.00556EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/01 12:0 a.m.10 views

WordPress Master Addons for Elementor Plugin <= 2.0.5.9 is vulnerable to Cross Site Scripting (XSS)

Software Master Addons for Elementor Type Plugin Vulnerable versions = 2.0.5.9 Fixed in 2.0.6.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4265 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6c9ef1b8a5d6 Credits...

6.4CVSS5.8AI score0.00556EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/04/29 10:15 a.m.1 views

CVE-2024-33595

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

8.8CVSS5.8AI score0.00452EPSS
Exploits0References1
NVD
NVD
added 2024/04/29 10:15 a.m.15 views

CVE-2024-33595

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

8.8CVSS4.7AI score0.00452EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.4 views

WordPress plugin Master Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.7AI score0.00452EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/04/29 12:0 a.m.14 views

Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor < 2.0.6.0 - Contributor+ Stored Cross-Site Scripting

Description The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 2.0.5.9 due to insufficient input sanitization and output escaping...

6.4CVSS5.8AI score0.00556EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.3 views

PT-2024-25364 · Unknown · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Master Addons for Elementor versions 2.0.5.4.1 and earlier Description: A Missing Authorization vulnerability has been identified in Jewel Theme Master Addons for Elementor. This issue allows unauthorized access, potentially leading to data...

8.8CVSS6.6AI score0.00452EPSS
Exploits0References7
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.12 views

WordPress Master Addons for Elementor Plugin <= 2.0.5.4.1 is vulnerable to Broken Access Control

Software Master Addons for Elementor Type Plugin Vulnerable versions = 2.0.5.4.1 Fixed in 2.0.5.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33595 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 342a8091705e Credits Khalid Yusu...

8.8CVSS6.6AI score0.00452EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/27 6:59 a.m.15 views

CVE-2024-29911 WordPress Master Addons for Elementor plugin <= 2.0.5.4.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1...

6.5CVSS6.6AI score0.00343EPSS
Exploits0References1
NVD
NVD
added 2024/03/27 3:15 a.m.12 views

CVE-2024-2139

The Master Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in all versions up to, and including, 2.0.5.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.7AI score0.0034EPSS
Exploits0References2
OSV
OSV
added 2024/03/27 3:15 a.m.2 views

CVE-2024-2139

The Master Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in all versions up to, and including, 2.0.5.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.4CVSS5.9AI score0.0034EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.4 views

WordPress Plugin Master Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

6.5CVSS7AI score0.00343EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.4 views

PT-2024-18865 · WordPress · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Master Addons for Elementor plugin for WordPress versions up to, and including, 2.0.5.6 Description: The issue is related to Stored Cross-Site Scripting via the Pricing Table widget due to insufficient input sanitization and output...

6.4CVSS8AI score0.0034EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.9 views

WordPress Master Addons for Elementor Plugin <= 2.0.5.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Master Addons for Elementor Type Plugin Vulnerable versions = 2.0.5.4.1 Fixed in 2.0.5.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29911 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 08d170dc9806 Credits Khalid Yusuf Require...

6.5CVSS6.9AI score0.00343EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder