Lucene search
K

203 matches found

OSV
OSV
added 2024/11/01 3:15 p.m.5 views

CVE-2024-47361

Missing Authorization vulnerability in WPVibes Elementor Addon Elements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elementor Addon Elements: from n/a through 1.13.6...

8.8CVSS5.8AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.34 views

CVE-2024-47361

Missing Authorization vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder.This issue affects Elementor Addon Elements: from n/a through = 1.13.6...

8.8CVSS0.00433EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/01 2:17 p.m.13 views

CVE-2024-47361 WordPress Elementor Addon Elements plugin <= 1.13.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in WPVibes Elementor Addon Elements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elementor Addon Elements: from n/a through 1.13.6...

6.5CVSS6.9AI score0.00433EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/01 2:17 p.m.21 views

CVE-2024-47361 WordPress Elementor Addon Elements plugin <= 1.13.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder.This issue affects Elementor Addon Elements: from n/a through = 1.13.6...

6.5CVSS0.00433EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:17 p.m.68 views

CVE-2024-47361

CVE-2024-47361 – Elementor Addon Elements (WPVibes)

8.8CVSS5.9AI score0.00433EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.5 views

WordPress plugin Elementor Addon Elements 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

8.8CVSS6.6AI score0.00433EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/14 12:40 a.m.5 views

WordPress Elementor Addon Elements plugin <= 1.13.8 - Authenticated (Contributor+) Sensitive Information Exposure via table_saved_sections vulnerability

Authenticated Contributor+ Sensitive Information Exposure via tablesavedsections vulnerability discovered by Ankit Patel in WordPress Plugin Elementor Addon Elements versions = 1.13.8...

4.3CVSS7AI score0.00368EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/14 12:0 a.m.12 views

WordPress Elementor Addon Elements Plugin <= 1.13.8 is vulnerable to Sensitive Data Exposure

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.13.8 Fixed in 1.13.9 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-8902 Patch priority Low CVSS severity Low 4.3 Developer WPVibes PSID ba1eb37881f7 Credits Ankit Patel Required...

4.3CVSS6.6AI score0.00368EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2024/10/12 9:39 a.m.50 views

CVE-2024-8902

CVE-2024-8902 affects the WordPress plugin Elementor Addon Elements (WPVibes). The vulnerability is an authenticated information disclosure via the function render_column in modules/data-table/widgets/data-table.php, allowing attackers with Contributor-level access and above to extract sensitive ...

4.3CVSS4.7AI score0.00368EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/12 9:39 a.m.14 views

CVE-2024-8902 Elementor Addon Elements <= 1.13.8 - Authenticated (Contributor+) Sensitive Information Exposure via table_saved_sections

The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.8 via the rendercolumn function in modules/data-table/widgets/data-table.php. This makes it possible for authenticated attackers, with Contributor-level...

4.3CVSS6.5AI score0.00368EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/12 12:0 a.m.4 views

WordPress plugin Elementor Addon Elements 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

4.3CVSS5.9AI score0.00368EPSS
Exploits0References3
OSV
OSV
added 2024/10/06 10:15 a.m.4 views

CVE-2024-47366

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WPVibes Elementor Addon Elements allows Stored XSS.This issue affects Elementor Addon Elements: from n/a through 1.13.6...

5.4CVSS5.8AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2024/10/06 10:15 a.m.36 views

CVE-2024-47366

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Stored XSS.This issue affects Elementor Addon Elements: from n/a through = 1.13.6...

6.5CVSS0.00241EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 9:45 a.m.39 views

CVE-2024-47366 WordPress Elementor Addon Elements plugin <= 1.13.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Stored XSS.This issue affects Elementor Addon Elements: from n/a through = 1.13.6...

6.5CVSS0.00241EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/06 9:45 a.m.19 views

CVE-2024-47366 WordPress Elementor Addon Elements plugin <= 1.13.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Stored XSS.This issue affects Elementor Addon Elements: from n/a through = 1.13.6...

6.5CVSS5.2AI score0.00241EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 9:45 a.m.51 views

CVE-2024-47366

CVE-2024-47366 is a stored XSS vulnerability in the WordPress plugin “WPVibes Elementor Addon Elements” affecting versions up to 1.13.6. The issue arises from improper input neutralization during web page generation, enabling stored cross-site scripting. Public references (Wordfence WordPress vul...

6.5CVSS5.9AI score0.00241EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/10/06 12:0 a.m.5 views

WordPress plugin Elementor Addon Elements 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.2AI score0.00241EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/09/30 10:5 a.m.5 views

WordPress Elementor Addon Elements plugin <= 1.13.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Elementor Addon Elements versions = 1.13.6...

6.5CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 9:28 a.m.5 views

WordPress Elementor Addon Elements plugin <= 1.13.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Elementor Addon Elements versions = 1.13.6...

8.8CVSS7AI score0.00433EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.11 views

WordPress Elementor Addon Elements Plugin <= 1.13.6 is vulnerable to Broken Access Control

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.13.6 Fixed in 1.13.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-47361 Patch priority Low CVSS severity Low 6.5 Developer WPVibes PSID 2e7a1c5b31a1 Credits Rafie Muhammad Patchstack...

8.8CVSS6.5AI score0.00433EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder