Lucene search
+L

386 matches found

CVE
CVE
added 2024/02/10 7:40 a.m.71 views

CVE-2024-24831

CVE-2024-24831 affects WordPress Premium Addons for Elementor (Leap13 Premium Addons for Elementor) and is a cross-site scripting (XSS) vulnerability due to improper neutralization of input during web page generation. Multiple sources identify the vulnerable range as Premium Addons for Elementor ...

6.5CVSS6.8AI score0.0032EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/02/02 12:0 a.m.11 views

WordPress Premium Addons for Elementor Plugin <= 4.10.16 is vulnerable to Cross Site Scripting (XSS)

Software Premium Addons for Elementor Type Plugin Vulnerable versions = 4.10.16 Fixed in 4.10.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-24831 Patch priority Low CVSS severity Low 6.5 Developer LeapWorx PSID 69f3ad862bdd Credits Khalid Yusuf Required...

6.5CVSS6.6AI score0.0032EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/11/30 4:15 p.m.31 views

CVE-2023-37868

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons PRO.This issue affects Premium Addons PRO: from n/a through 2.9.0...

6.5CVSS0.00593EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 4:15 p.m.19 views

Design/Logic Flaw

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons PRO.This issue affects Premium Addons PRO: from n/a through 2.9.0...

4CVSS7.1AI score0.00593EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/30 3:17 p.m.28 views

CVE-2023-37868 WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons PRO.This issue affects Premium Addons PRO: from n/a through 2.9.0...

6.5CVSS6.7AI score0.00593EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 3:17 p.m.49 views

CVE-2023-37868

CVE-2023-37868 concerns WordPress Premium Addons PRO (Leap13 Premium Addons PRO). Affected: Premium Addons PRO versions up to and including 2.9.0. Description: Exposure of sensitive information to an unauthorized actor. Root cause/source indicates information disclosure vulnerability in the plugi...

6.5CVSS7.1AI score0.00593EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/30 12:0 a.m.7 views

WordPress Plugin Premium Addons for Elementor Information Disclosure Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An information disclosure vulnerability...

6.5CVSS6.2AI score0.00593EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/07/10 12:0 a.m.19 views

WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Broken Access Control

Software Premium Addons PRO Type Plugin Vulnerable versions = 2.9.0 Fixed in 2.9.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-37869 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 09e72b9c3acf Credits Rafie Muhammad Patchstack...

8.8CVSS6.6AI score0.00628EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/07/10 12:0 a.m.12 views

WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Sensitive Data Exposure

Software Premium Addons PRO Type Plugin Vulnerable versions = 2.9.0 Fixed in 2.9.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-37868 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 61bc62d7d465 Credits Rafie Muhammad...

6.5CVSS6.6AI score0.00593EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/06/23 12:15 p.m.31 views

CVE-2023-34012

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Premium Addons for Elementor Premium Addons PRO plugin = 2.8.24 versions...

7.1CVSS6.3AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2023/06/23 12:15 p.m.8 views

CVE-2023-34012

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Premium Addons for Elementor Premium Addons PRO plugin = 2.8.24 versions...

6.1CVSS6.8AI score0.00382EPSS
Exploits0References1
CVE
CVE
added 2023/06/23 11:24 a.m.73 views

CVE-2023-34012

CVE-2023-34012 affects Premium Addons for Elementor Premium Addons PRO (WordPress) up to version 2.8.24, with an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability. The issue is fixed in version 2.8.25; update to that version or apply vendor guidance. The vulnerability is not desc...

7.1CVSS6.1AI score0.00382EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/23 11:24 a.m.15 views

CVE-2023-34012 WordPress Premium Addons PRO Plugin <= 2.8.24 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Premium Addons for Elementor Premium Addons PRO plugin = 2.8.24 versions...

7.1CVSS5.9AI score0.00382EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/23 11:24 a.m.43 views

CVE-2023-34012 WordPress Premium Addons PRO Plugin <= 2.8.24 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Premium Addons for Elementor Premium Addons PRO plugin = 2.8.24 versions...

7.1CVSS6.4AI score0.00382EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.12 views

PT-2023-24631 · Unknown · Premium Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Premium Addons for Elementor Premium Addons PRO plugin versions = 2.8.24 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scrip...

7.1CVSS6.1AI score0.00382EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/06/23 12:0 a.m.5 views

WordPress Plugin Premium Addons PRO 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.9AI score0.00382EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/06/02 12:0 a.m.22 views

WordPress Premium Addons PRO Plugin <= 2.8.24 is vulnerable to Cross Site Scripting (XSS)

Software Premium Addons PRO Type Plugin Vulnerable versions = 2.8.24 Fixed in 2.8.25 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34012 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3e100a687a90 Credits Rafie Muhamm...

7.1CVSS5.9AI score0.00382EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2021/08/30 12:0 a.m.9 views

WordPress Premium Addons for Elementor plugin <= 4.5.1 - Arbitrary Blog Option Update vulnerability

Arbitrary Blog Option Update vulnerability discovered by WPScanTeam in WordPress Premium Addons for Elementor plugin versions = 4.5.1. Solution Update the WordPress Premium Addons for Elementor plugin to the latest available version at least 4.5.2...

3.2AI score
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2021/05/17 12:0 a.m.15 views

WordPress Premium Addons for Elementor Plugin < 4.2.8 XSS Vulnerability

The WordPress plugin Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

5.4CVSS5.6AI score0.0059EPSS
Exploits0References2
NVD
NVD
added 2021/05/05 7:15 p.m.18 views

CVE-2021-24257

The “Premium Addons for Elementor” WordPress Plugin before 4.2.8 has several widgets that are vulnerable to stored Cross-Site Scripting XSS by lower-privileged users such as contributors, all via a similar method...

5.4CVSS0.0059EPSS
Exploits0References2
Rows per page
Query Builder