Lucene search
K

73 matches found

CNNVD
CNNVD
added 2024/03/30 12:0 a.m.3 views

WordPress Plugin Ultimate Addons for Beaver Builder 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.4CVSS7.7AI score0.00433EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2024/03/29 12:0 a.m.14 views

Ultimate Addons for Beaver Builder – Lite < 1.5.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Info Table Widget

Description The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Info Table widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS5.9AI score0.00433EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/03/26 12:0 a.m.11 views

Master Addons for Elementor < 2.0.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget

Description The Master Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in all versions up to, and including, 2.0.5.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS5.9AI score0.0034EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.4 views

PT-2024-18865 · WordPress · Master Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Master Addons for Elementor plugin for WordPress versions up to, and including, 2.0.5.6 Description: The issue is related to Stored Cross-Site Scripting via the Pricing Table widget due to insufficient input sanitization and output...

6.4CVSS8AI score0.0034EPSS
Exploits0References5
OSV
OSV
added 2024/03/13 4:15 p.m.4 views

CVE-2024-1537

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Data Table widget in all versions up to, and including, 5.9.9 due to insufficient input sanitization and output...

6.4CVSS7.4AI score0.00421EPSS
Exploits0References2
OSV
OSV
added 2024/03/13 4:15 p.m.4 views

CVE-2024-1499

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in the $settings'titletags' parameter in all versions up to, and including, 2.10.30 due to insufficient input sanitization and output escaping. This makes it possible for...

5.4CVSS6AI score0.00532EPSS
Exploits0References3
Prion
Prion
added 2024/03/13 4:15 p.m.21 views

Cross site scripting

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in the $settings'titletags' parameter in all versions up to, and including, 2.10.30 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS6AI score0.00532EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/13 3:27 p.m.24 views

CVE-2024-1499 Orbit Fox by ThemeIsle <= 2.10.30 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in the $settings'titletags' parameter in all versions up to, and including, 2.10.30 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.9AI score0.00532EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.4 views

PT-2024-18094 · Themeisle · Orbit Fox

Name of the Vulnerable Software and Affected Versions: The Orbit Fox by ThemeIsle plugin for WordPress versions up to, and including, 2.10.30 Description: The issue is related to Stored Cross-Site Scripting via the Pricing Table widget in the $settings'title tags' parameter due to insufficient...

6.4CVSS8AI score0.00532EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.10 views

WordPress Plugin Essential Addons for Elementor Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.4CVSS5.7AI score0.00421EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.5 views

PT-2024-18123 · WordPress · Essential Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Essential Addons for Elementor plugin for WordPress versions up to, and including, 5.9.9 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Data Table widget due to insufficient input sanitization and output...

6.4CVSS7.9AI score0.00421EPSS
Exploits0References5
OSV
OSV
added 2024/02/05 10:16 p.m.4 views

CVE-2024-0508

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pricing Table Elementor Widget in all versions up to, and including, 2.10.27 due to insufficient input sanitization and output escaping on the user supplied link URL. This makes it possib...

5.4CVSS7.4AI score0.00525EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/05 12:0 a.m.6 views

PT-2024-15624 · Themeisle · Orbit Fox

Name of the Vulnerable Software and Affected Versions: The Orbit Fox by ThemeIsle plugin for WordPress versions up to, and including, 2.10.27 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Pricing Table Elementor Widget due to insufficient input sanitization and...

6.4CVSS5.7AI score0.00525EPSS
Exploits0References9
Rows per page
Query Builder