Lucene search
+L

386 matches found

Vulnrichment
Vulnrichment
added 2024/03/13 3:32 p.m.19 views

CVE-2024-2239 Premium Addons PRO <= 2.9.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Premium Magic Scroll Module

The Premium Addons PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Premium Magic Scroll module in all versions up to, and including, 2.9.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS7AI score0.00423EPSS
Exploits0References2
CVE
CVE
added 2024/03/13 3:26 p.m.50 views

CVE-2024-1680

CVE-2024-1680 refers to the Premium Addons for Elementor plugin for WordPress. Public sources (NVD/Red Hat/Wordfence) describe a Stored Cross-Site Scripting (XSS) vulnerability in the Image Settings URL of the Banner, Team Members, and Image Scroll widgets, present in all versions up to and inclu...

6.4CVSS6.1AI score0.00423EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/13 3:26 p.m.16 views

CVE-2024-1680

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Settings URL of the Banner, Team Members, and Image Scroll widgets in all versions up to, and including, 4.10.21 due to insufficient input sanitization and output escaping. This makes ...

6.4CVSS5.8AI score0.00423EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/13 3:26 p.m.33 views

CVE-2024-1680 Premium Addons for Elementor <= 4.10.21 - Authenticated (Contributor+) Stored Cross-Site Scripting via Banner, Team Members, and Image Scroll Widgets

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Settings URL of the Banner, Team Members, and Image Scroll widgets in all versions up to, and including, 4.10.21 due to insufficient input sanitization and output escaping. This makes ...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/13 3:26 p.m.18 views

CVE-2024-0326 Premium Addons for Elementor <= 4.10.17 - Authenticated(Contributor+) Stored Cross-Site Scripting via Link Wrapper

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Link Wrapper functionality in all versions up to, and including, 4.10.17 due to insufficient input sanitization and output escaping on user supplied links. This makes it possible fo...

6.4CVSS7AI score0.00613EPSS
Exploits0References5
CVE
CVE
added 2024/03/13 3:26 p.m.55 views

CVE-2024-0326

CVE-2024-0326 affects Premium Addons for Elementor for WordPress. It is a Stored Cross-Site Scripting (XSS) vulnerability in the Link Wrapper feature across all versions up to and including 4.10.17. The issue arises from insufficient input sanitization and output escaping on user-supplied links, ...

6.4CVSS6.8AI score0.00613EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.7 views

PT-2024-18485 · WordPress · Premium Addons Pro

Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 2.9.12 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping in the premium fbchat app id parameter o...

6.4CVSS8AI score0.00413EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.7 views

PT-2024-18216 · WordPress · Premium Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Premium Addons for Elementor plugin for WordPress versions up to, and including, 4.10.21 Description: The issue is related to Stored Cross-Site Scripting via the Image Settings URL of the Banner, Team Members, and Image Scroll widgets due to...

6.4CVSS8AI score0.00423EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.5 views

WordPress Plugin Premium Addons for Elementor Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

6.4CVSS5.7AI score0.00613EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.5 views

WordPress Plugin Premium Addons for Elementor Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.4CVSS5.8AI score0.00423EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.5 views

WordPress Plugin Premium Addons PRO Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.5 views

WordPress Plugin Premium Addons PRO Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.4 views

WordPress Plugin Premium Addons PRO Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.7 views

WordPress Plugin Premium Addons PRO Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.9 views

PT-2024-15472 · WordPress · Premium Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Premium Addons for Elementor plugin for WordPress versions up to, and including, 4.10.17 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Link Wrapper functionality due to insufficient input sanitization and...

6.4CVSS8.1AI score0.00613EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.8 views

PT-2024-18488 · WordPress · Premium Addons Pro

Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 2.9.12 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping in the navigation dots parameter of the...

6.4CVSS8AI score0.00423EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.8 views

PT-2024-19383 · WordPress · Premium Addons Pro

Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 2.9.12 Description: The issue is related to Stored Cross-Site Scripting via the Premium Magic Scroll module due to insufficient input sanitization and output escaping. Thi...

6.4CVSS7.9AI score0.00423EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.6 views

PT-2024-19368 · WordPress · Premium Addons Pro

Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 2.9.12 Description: The issue is related to Stored Cross-Site Scripting via the Global Badge module due to insufficient input sanitization and output escaping. This allows...

6.4CVSS7.9AI score0.00423EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.6 views

WordPress Plugin Premium Addons PRO Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.4CVSS5.8AI score0.00399EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.10 views

PT-2024-18484 · WordPress · Premium Addons Pro

Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 2.9.12 Description: The issue is related to Stored Cross-Site Scripting via the plugin's IHover widget link due to insufficient input sanitization and output escaping on...

6.4CVSS8AI score0.00399EPSS
Exploits0References5
Rows per page
Query Builder