Lucene search
K

32 matches found

RedhatCVE
RedhatCVE
added 2026/02/20 1:26 p.m.4 views

CVE-2026-25319

Cross-Site Request Forgery CSRF vulnerability in wpzita Zita Elementor Site Library zita-site-library allows Cross Site Request Forgery.This issue affects Zita Elementor Site Library: from n/a through = 1.6.6...

4.3CVSS5.5AI score0.00107EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/19 8:26 a.m.3 views

CVE-2026-25319

Cross-Site Request Forgery CSRF vulnerability in wpzita Zita Elementor Site Library zita-site-library allows Cross Site Request Forgery.This issue affects Zita Elementor Site Library: from n/a through = 1.6.6...

5.5AI score0.00107EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/19 8:26 a.m.26 views

CVE-2026-25319 WordPress Zita Elementor Site Library plugin <= 1.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in wpzita Zita Elementor Site Library zita-site-library allows Cross Site Request Forgery.This issue affects Zita Elementor Site Library: from n/a through = 1.6.6...

4.3CVSS0.00107EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/19 8:26 a.m.2 views

CVE-2026-25319 WordPress Zita Elementor Site Library plugin <= 1.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in wpzita Zita Elementor Site Library zita-site-library allows Cross Site Request Forgery.This issue affects Zita Elementor Site Library: from n/a through = 1.6.6...

4.3CVSS5.5AI score0.00107EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

WordPress plugin Zita Elementor Site Library 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...

4.3CVSS5.7AI score0.00107EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/28 1:38 p.m.5 views

WordPress Zita Elementor Site Library plugin <= 1.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Zita Elementor Site Library versions = 1.6.6...

4.3CVSS5.5AI score0.00107EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49484

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00367EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-36651

Malicious code in bioql PyPI...

9.9CVSS6.5AI score0.00492EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-31841

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00343EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:45 a.m.8 views

CVE-2024-8921

The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level acce...

6.4CVSS5.8AI score0.00367EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.8 views

CVE-2024-3249

The Zita Elementor Site Library plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the importxmldata, xmldataimport, importoptiondata, importwidgets, and importcustomizersettings functions in all versions up to, and including, 1.6.2. This...

4.3CVSS6.5AI score0.00343EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:37 a.m.8 views

CVE-2024-37420

Unrestricted Upload of File with Dangerous Type vulnerability in WPZita Zita Elementor Site Library allows Upload a Web Shell to a Web Server.This issue affects Zita Elementor Site Library: from n/a through 1.6.1...

9.9CVSS6.8AI score0.00492EPSS
Exploits0
NVD
NVD
added 2024/10/16 11:15 a.m.23 views

CVE-2024-8921

The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level acce...

6.4CVSS0.00367EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/10/16 11:3 a.m.21 views

CVE-2024-8921 Zita Elementor Site Library <= 1.6.3 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level acce...

6.4CVSS0.00367EPSS
Exploits0References6
CVE
CVE
added 2024/10/16 11:3 a.m.39 views

CVE-2024-8921

CVE-2024-8921 concerns the WordPress plugin Zita Elementor Site Library (≤ 1.6.3). It enables Stored Cross-Site Scripting via SVG file uploads due to insufficient input sanitization and output escaping. Exploitation requires authenticated access at Author level or higher, and scripts execute when...

6.4CVSS5.9AI score0.00367EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/10/16 3:57 a.m.4 views

WordPress Zita Elementor Site Library plugin <= 1.6.3 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG File Upload vulnerability discovered by Francesco Carlucci in WordPress Plugin Zita Elementor Site Library versions = 1.6.3...

6.4CVSS5.7AI score0.00367EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/16 12:0 a.m.13 views

WordPress Zita Elementor Site Library Plugin <= 1.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Zita Elementor Site Library Type Plugin Vulnerable versions = 1.6.3 Fixed in 1.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8921 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 13fd5fea2d7c Credits Francesco...

6.4CVSS6AI score0.00367EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.3 views

WordPress plugin Zita Elementor Site Library 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.4CVSS5.8AI score0.00367EPSS
Exploits0References2
NVD
NVD
added 2024/07/09 11:15 a.m.16 views

CVE-2024-37420

Unrestricted Upload of File with Dangerous Type vulnerability in WPZita Zita Elementor Site Library allows Upload a Web Shell to a Web Server.This issue affects Zita Elementor Site Library: from n/a through 1.6.1...

9.9CVSS0.00492EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/09 10:18 a.m.12 views

CVE-2024-37420 WordPress Zita Elementor Site Library plugin <= 1.6.1 - Arbitrary Code Execution vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in WPZita Zita Elementor Site Library allows Upload a Web Shell to a Web Server.This issue affects Zita Elementor Site Library: from n/a through 1.6.1...

9.9CVSS6.8AI score0.00492EPSS
Exploits0References1
Rows per page
Query Builder