31 matches found
WordPress plugin RTMKit Addons for Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-47271
Name of the Vulnerable Software and Affected Versions RTMKit Addons for Elementor plugin for WordPress versions up to and including 1.6.1 Description The RTMKit Addons for Elementor plugin for WordPress is susceptible to Stored Cross-Site Scripting. This occurs through insufficient input...
WordPress RTMKit Addons plugin <= 1.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Accordion Repeater Block Attribute vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Accordion Repeater Block Attribute vulnerability discovered by zer0gh0st in WordPress Plugin RTMKit versions = 1.6.5...
EUVD-2025-17298
Malicious code in bioql PyPI...
CVE-2025-49235
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rometheme RTMKit rometheme-for-elementor allows Stored XSS.This issue affects RTMKit: from n/a through = 1.6.0...
CVE-2025-49235 WordPress RTMKit Addons for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rometheme RTMKit rometheme-for-elementor allows Stored XSS.This issue affects RTMKit: from n/a through = 1.6.0...
CVE-2025-49235
CVE-2025-49235 affects RTMKit Addons for Elementor. The vulnerability is a Stored XSS caused by improper neutralization during web page generation, allowing injection via input. Affected product/version: RTMKit Addons for Elementor from n/a through 1.6.0. CVSS v3.1 base score 6.5 (Medium). Some c...
CVE-2025-49235 WordPress RTMKit Addons for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rometheme RTMKit rometheme-for-elementor allows Stored XSS.This issue affects RTMKit: from n/a through = 1.6.0...
PT-2025-24198 · Unknown · Rtmkit Addons For Elementor
Name of the Vulnerable Software and Affected Versions: RTMKit Addons for Elementor versions 1.6.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker...
WordPress plugin RTMKit Addons for Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress RTMKit Addons for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Prissy in WordPress Plugin RTMKit versions = 1.6.0...