CVE-2023-51541

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aleksandar Urošević Stock Ticker allows Stored XSS.This issue affects Stock Ticker: from n/a through 3.23.4...

CVE-2024-5416

The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url parameter of multiple widgets in all versions up to, and including, 3.23.4 due to insufficient input sanitization and output escaping on user supplied...

PT-2024-36077 · WordPress · Elementor Website Builder

Name of the Vulnerable Software and Affected Versions: The Elementor Website Builder – More than Just a Page Builder plugin for WordPress versions up to, and including, 3.23.4 Description: The issue is related to Stored Cross-Site Scripting via the url parameter of multiple widgets due to...

PT-2023-31845 · Unknown · Aleksandar Urošević Stock Ticker

Name of the Vulnerable Software and Affected Versions: Aleksandar Urošević Stock Ticker versions 3.23.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

WordPress Stock Ticker Plugin <= 3.23.3 is vulnerable to Cross Site Scripting (XSS)

Software Stock Ticker Type Plugin Vulnerable versions = 3.23.3 Fixed in 3.23.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-40208 Patch priority Medium CVSS severity Medium 7.1 Developer Aleksandar Urošević PSID 4548610be084 Credits Aman Rawat...