Lucene search
K

51 matches found

Cvelist
Cvelist
added 2024/02/21 7:7 a.m.35 views

CVE-2024-24843 WordPress PowerPack Pro for Elementor Plugin < 2.10.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in PowerPack Addons for Elementor PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a before 2.10.8...

7.1CVSS7.2AI score0.0022EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/02/21 12:0 a.m.6 views

PT-2024-20611 · Unknown · Powerpack Pro For Elementor

Name of the Vulnerable Software and Affected Versions: PowerPack Pro for Elementor versions prior to 2.10.8 Description: A Cross-Site Request Forgery CSRF issue affects the PowerPack Pro for Elementor. This issue allows for malicious requests to be made on behalf of a user without their knowledge...

8.8CVSS7.5AI score0.0022EPSS
Exploits0References5
WPVulnDB
WPVulnDB
added 2024/02/05 12:0 a.m.20 views

PowerPack Pro for Elementor < 2.10.8 - Missing Authorization to Settings Reset

Description The PowerPack Pro for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in all versions up to, and including, 2.10.6. This makes it possible for unauthenticated attackers to reset plugin settings...

6.4AI score0.00241EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/02/02 12:0 a.m.11 views

WordPress PowerPack Pro for Elementor Plugin <= 2.10.6 is vulnerable to Settings Change

Software PowerPack Pro for Elementor Type Plugin Vulnerable versions = 2.10.6 Fixed in 2.10.8 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-24844 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ad539f87b78f Credits Dave Jong Patchstac...

6.6AI score0.00241EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/02/02 12:0 a.m.10 views

WordPress PowerPack Pro for Elementor Plugin < 2.10.8 is vulnerable to Cross Site Request Forgery (CSRF)

Software PowerPack Pro for Elementor Type Plugin Vulnerable versions 2.10.8 Fixed in 2.10.8 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-24843 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 81a4db4a6962 Credits Dave Jo...

8.8CVSS6.6AI score0.0022EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/14 3:15 p.m.3 views

CVE-2023-49739

Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23...

6.1CVSS7.3AI score0.00416EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/12/14 2:43 p.m.29 views

CVE-2023-49739 WordPress PowerPack Pro for Elementor plugin <= 2.9.23 - Reflected Cross Site Scripting (XSS) vulnerability

Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23...

7.1CVSS7.1AI score0.00416EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/14 2:43 p.m.17 views

CVE-2023-49739 WordPress PowerPack Pro for Elementor plugin <= 2.9.23 - Reflected Cross Site Scripting (XSS) vulnerability

Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23...

7.1CVSS6.6AI score0.00416EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/12/08 12:0 a.m.37 views

PowerPack Pro for Elementor < 2.9.24 - Reflected Cross-Site Scripting

Description The PowerPack Pro for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.9.23 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web script...

7.1CVSS6.5AI score0.00416EPSS
Exploits0References1Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2023/12/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-49739

Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23...

7.1CVSS6.8AI score0.00416EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/12/01 12:0 a.m.20 views

WordPress PowerPack Pro for Elementor Plugin <= 2.9.23 is vulnerable to Cross Site Scripting (XSS)

Software PowerPack Pro for Elementor Type Plugin Vulnerable versions = 2.9.23 Fixed in 2.9.24 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49739 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2b872117ab59 Credits Rafie Muhammad...

7.1CVSS6.5AI score0.00416EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder